Apple is now sending urgent Lock Screen notifications to iPhones and iPads running iOS 17 and earlier versions, warning users of active web-based attacks targeting outdated software. These Critical Software alerts, appearing within the Settings app, explicitly state Apple is aware of attacks exploiting vulnerabilities in older iOS versions, including the user's specific device. The notifications urge immediate installation of a critical security update to protect against potential data theft via malicious links or compromised websites.

The alerts extend beyond the iOS 13 and 14 devices Apple previously flagged, reaching devices on iOS 17.0 and potentially higher. This expansion follows reports of sophisticated hacking tools like the Coruna and DarkSword exploit kits, effective against iOS 13 through 17.2.1. Hackers leverage these kits to compromise unpatched devices, stealing sensitive information. Apple released iOS 15.8.7 and 16.7.15 on March 11th to patch these vulnerabilities, but devices on iOS 13 or 14 must first upgrade to iOS 15 to receive protection.

Users who cannot update immediately should consider enabling Lockdown Mode, available on iOS 16 and later, to mitigate risks from malicious web content. Apple Safe Browsing in Safari is enabled by default, blocking identified malicious URL domains. This proactive alert system underscores Apple's ongoing battle against evolving cyber threats targeting its ecosystem's older devices.