The Apple iPhone is the most popular phone line in the United States and one of the most popular device lines in the world, with an estimated 1.6 billion iPhone users worldwide. Unfortunately, many of these users are now at risk.
Over the past few weeks, Apple has been issuing warnings about a security vulnerability that data shows will affect about half of iPhone users, or about 800 million.
Apple issues warning
Late last month, Apple began warning users of two serious flaws found in WebKit, the browser engine that powers Safari and all browsers on iOS. The flaws left iPhone users vulnerable to “extremely sophisticated attacks” targeting specific individuals.
Apple said the critical flaw could allow hackers to take control of an iPhone or iPad by using a malicious website on an infected web browser and trick the device into executing harmful instructions.
The flaw leaves users vulnerable to hackers who could take control of an iPhone or iPad or run code without your permission and potentially obtain passwords or payment information.
800 million devices are vulnerable to attack
The good news is that Apple has created a patch to correct the vulnerability in its latest software update. However, those who do not install software updates are vulnerable.
Forbes estimates that 50% of all eligible iPhone users have yet to upgrade from iOS 18 to iOS 26. Given that there are more than 1.6 billion iPhone users worldwide, this means approximately 800 million devices remain vulnerable. StatCounter has a more pessimistic view, estimating that only 20% of users have upgraded, which will affect more than 1.2 billion iPhone users.
Apple said the devices most at risk include iPhone 11 and later, 12.9-inch iPad Pro (3rd generation and later), and 11-inch iPad Pro (1st generation and later). Other vulnerable models include iPad Air (3rd generation and later), iPad (8th generation and later), and iPad mini (5th generation and later).
The only way to protect yourself
Unfortunately, the only way to protect yourself from these vulnerabilities is to upgrade to the latest version of iOS, which is iOS 26.2.
While Apple was expected to make security updates available for users who want to stay on iOS 18 for longer, that is no longer the case as iOS 18.7.3 is not available unless you are running an iPhone that cannot run iOS 26.
“There are no workarounds or user behaviors that can effectively reduce this risk,” Keeper Security’s Darren Guccione said via Forbes .
He went on to explain that upgrading to the latest version of the software is “the only effective defense. Once a patch becomes public, the window of exposure for anyone who delays updating increases.”
The good news is that installing the update is easy. In fact, for users who have automatic updates enabled, the software should be up to date and patches should already be installed.
If you don’t have automatic updates enabled, you’ll need to manually download iOS 26.2 or iPadOS 26.2 through your device settings. In this case, users can simply open the Settings app and click on “General” and then “Software Update.”
This article was originally published by Men’s Journal on January 10, 2026, and first appeared in the News section. Click here to add Men’s Diary as your go-to source.
