Originally reported by Hacker News (filtered)
TL;DR
Apple issued iOS 15.8.7 to patch the Coruna exploit affecting iPhone 6S devices from 2015. The update demonstrates Apple's commitment to maintaining security patches for legacy hardware still in use.
While this addresses a confirmed exploit, it affects only legacy iPhone 6S devices from 2015 running iOS 15, representing a limited user base with reduced attack surface compared to current devices.
Apple released iOS 15.8.7 specifically targeting iPhone 6S devices to address vulnerabilities related to the Coruna exploit. The update represents an unusual security maintenance effort for hardware originally released in September 2015, now over a decade old.
While Apple's security advisory provides limited technical details about the Coruna exploit, the targeted nature of this patch suggests the vulnerability posed sufficient risk to warrant dedicated engineering resources for legacy device support. The iPhone 6S, despite its age, remains in active use among certain user populations who have not upgraded to newer hardware.
This update highlights several key considerations for organizations managing mixed-age mobile device fleets:
The iPhone 6S runs on Apple's A9 processor and lacks many hardware security features present in modern devices. This creates unique challenges when backporting security fixes from current iOS versions to legacy hardware architectures.
Security teams managing iPhone 6S devices should prioritize immediate deployment of iOS 15.8.7 and evaluate migration timelines for remaining legacy hardware in their environments.
Originally reported by Hacker News (filtered)