When government hacking tools fall into the wrong hands, catastrophe strikes. Coruna — a toolkit with 23 iPhone vulnerabilities — leaked from a US government contractor and has now infected 42,000 devices.
When government hacking tools fall into the wrong hands, catastrophe strikes. Coruna — a toolkit with 23 iPhone vulnerabilities — leaked from a US government contractor, fell into Russian spies' hands,
and now Chinese hackers are using it to infect 42,000 devices. This is the story of how security tools become cyber weapons. [IMAGE_PLACEHOLDER_1] The Leak of the Century: When Government Tools Hit the
Black Market March 5, 2026, Google Threat Intelligence published a report that shocked the cybersecurity industry: Coruna — an advanced exploit toolkit with 23 zero-day vulnerabilities for iPhone — had
leaked from a US government contractor and was now in the hands of cybercriminals. This is the first time a government hacking tool of this scale has reached the black market. Coruna is the codename for
a toolkit developed by a private security company for US intelligence agencies. Its primary purpose was hacking iPhones of suspected terrorists and foreign spies. But now, this same tool is in the hands
of Chinese hackers using it for widespread attacks. The numbers are terrifying: So far, 42,000 iPhone devices worldwide have been infected using Coruna. Most victims are in the United States, Europe, and
the Middle East. And the worst part? Apple was unaware of these vulnerabilities until a few weeks ago. "This is the worst security leak in iOS history. When government tools leak, we're all at risk." —
Tekin Security Analysis What is Coruna? Anatomy of a Cyber Weapon Coruna is an advanced exploit toolkit containing 23 zero-day vulnerabilities in iOS. These vulnerabilities cover a wide range of iOS versions:
Read Full Article