エクスプロイトキット「Coruna」の概要

CorunaはiOS 13.0(2019年9月リリース)からiOS 17.2.1(2023年12月リリース)までを標的とする。被害者が悪意のあるWebサイトにアクセスすると、暗号資産ウォレットなどの機密情報を窃取されるという。
The Hacker News

Claude Code Flaws Allow Remote Code Execution and API Key Exfiltration

Claude Code flaws allow remote code execution and API key theft via untrusted repositories; three bugs fixed across 2025–2026 ...
Cybernews

AI assistant runs hacker’s commands just from opening a project: critical vulnerability ...

Claude Code would execute hidden code from untrusted projects before any user confirmation, Check Point reports.
CSO Online

Coruna iOS exploit kit moved from spy tool to mass criminal campaign in under a year

Google and iVerify researchers say the case points to a thriving secondary market for high-end zero-day exploits.
SecurityWeek

Nation-State iOS Exploit Kit ‘Coruna’ Found Powering Global Attacks

The Coruna exploit kit has 23 exploits targeting iOS devices, previously used in Russian attacks and now in cybercrime ...
Security Boulevard

Microsoft’s February Security Update of High-Risk Vulnerability Notice for Multiple Products

Overview On February 11, 2026, NSFOCUS CERT monitored Microsoft’s release of its February security update patches, addressing 59 security issues across widely used products such as Windows, Azure, ...
SecurityWeek

CISA Adds iOS Flaws From Coruna Exploit Kit to KEV List

CISA has expanded the Known Exploited Vulnerabilities catalog with three bugs targeted by the nation-state-grade Coruna iOS exploit kit.