Monday’s iOS 26.5.2, iPadOS 26.5.2, and macOS 26.5.2 updates include security fixes that had originally been planned to be released alongside version 26.6 of each operating system. Here’s why Apple chose to push the updates early.
The company details the security content for each update (iOS 26.5.2, iPadOS 26.5.2, and macOS 26.5.2), which includes a full list of vulnerabilities the updates addressed, including fixes for vulnerabilities in the kernel, WebKit, and WebRTC.
Those notes also mention that the updates also included security fixes that had first been made available through the iOS 26.6, iPadOS 26.6, and macOS Tahoe 26.6 betas, indicating the company decided to release them to the public earlier than it had originally planned.
Apple told Reuters that the early release is a direct response to new threats enabled by increasingly powerful AI models:
The company told Reuters on Monday it was adapting to the reality that, given the ability of artificial intelligence to speed the development of malicious hacking tools, it needed to reduce the time between when updates were first made public and when they were put into customers’ hands.
Apple added that “while there was no evidence that any of the newly patched vulnerabilities had been taken advantage of,” it still decided to release the fixes early to reduce the amount of time attackers would have to take advantage of them.
Apple usually only releases releases security updates as part of a move from one version of iOS to the next, unless security experts discover a hacking campaign that uses a previously unknown security hole.
The early release of the security fixes is an acknowledgment that Apple realizes that AI is shrinking the window attackers need to exploit known flaws. Cybersecurity experts are increasingly expressing concern over the cybersecurity capabilities of powerful AI models.
In May, we reported that researchers at cybersecurity firm Calif had used Anthropic’s new frontier AI model called Claude Mythos Preview to uncover a new macOS security vulnerability.
The researchers used the model to write code that links together two macOS bugs in a way that resulted in what is known as a privilege escalation exploit.
