Received that software update notification on your iPhone or other Apple device? You might not want to ignore it this time. India’s cybersecurity agency, the Indian Computer Emergency Response Team (CERT-In), has issued a high-severity alert warning of multiple vulnerabilities that could put your data and device at risk. The advisory, released on March 26, 2026, highlights serious flaws in widely used Apple software that could allow attackers to gain unauthorised access, steal sensitive data, or even take control of affected devices. Users have been urged to install the latest updates immediately to protect the devices.
According to CERT-In, these vulnerabilities have been found across multiple Apple operating systems and apps, making a wide range of devices vulnerable. If left unupdated, hackers could exploit these flaws to run malicious code, gain deeper access to devices, bypass security protections, or even crash systems. In simple terms, remote attackers could remotely take control of your Apple device, access sensitive data, or disrupt how a device works. The agency has also warned of risks such as data leaks, malware spread, and system crashes.
What Apple devices are affected
The advisory from CERT-In lists a wide range of impacted software versions. These include iOS and iPadOS versions prior to 26.4 and 18.7.7, macOS Tahoe versions prior to 26.4, macOS Sequoia versions before 15.7.5, and macOS Sonoma versions before 14.8.5.
Other affected software includes Safari versions prior to 26.4, as well as watchOS, tvOS, and visionOS versions before 26.4. Even development tools like Xcode versions prior to 26.4 are impacted.
This effectively means most Apple devices running older software versions are at risk, including iPhones, iPads, Macs, Apple Watches, and devices such as the Vision Pro. Users who have not updated their devices recently are particularly vulnerable.
What you need to do
To protect your device from potential remote attacks, all you need to do is update your Apple devices to the latest available software. Apple has already released patches addressing these vulnerabilities, and installing them remains the most effective way to stay protected.
To update your device:
– On iPhone or iPad: Go to Settings General Software Update
– On Mac: Go to System Settings General Software Update
– On Apple Watch: Use the Watch app on iPhone and check for updates
– For other devices: Navigate to system settings and install the latest version available
In addition to updating, CERT-In has advised users to avoid clicking on suspicious links, refrain from downloading unknown files, and only install apps from trusted sources such as official app stores. Additionally, regularly backing up important data is recommended to prevent loss in case of an attack.
