Apple Releases iOS 9.3.5 With Fix for Three Critical Vulnerabilities Exploited by Hacking Group - MacRumors
Skip to Content

Apple Releases iOS 9.3.5 With Fix for Three Critical Vulnerabilities Exploited by Hacking Group

by

Apple today released an iOS 9.3.5 update for the iOS 9 operating system, almost a month after releasing iOS 9.3.4 and a few weeks before we expect to see the public release of iOS 10, currently in beta testing.

iOS 9.3.5 is available immediately to all devices running iOS 9 via an over-the-air update.

appleios93
iOS 9.3.5 is likely to be the last update to the iOS 9 operating system, introducing final bug fixes, security improvements, and performance optimizations before iOS 9 is retired in favor of iOS 10. iOS 9.3.4, the update prior to iOS 9.3.5, included a critical security fix patching the Pangu iOS 9.3.3 jailbreak exploit. iOS 9.3.5 features major security fixes for three zero-day exploits and should be downloaded by all iOS users right away.

According to The New York Times the three security vulnerabilities patched in the update were exploited by surveillance software created by NSO Group to jailbreak an iPhone and intercept communications.

In an overview of the exploits, security firm Lookout says NSO Group's spyware software, nicknamed "Pegasus," was highly sophisticated, installing itself through a link sent via a text message.

The exploit was initially discovered on August 11 after human rights defender Ahmed Mansoor received a suspicious link and sent it to Citizen Lab and Lookout. Had Mansoor clicked the link, it would have jailbroken his iPhone and installed "sophisticated malware" able to intercept phone calls, text messages, FaceTime calls, email, and more.

Pegasus is the most advanced attack Lookout has seen because it is customizable, can track a range of things, and uses strong encryption to avoid detection. Lookout believes "Pegasus" had been in the wild for quite some time before it was discovered, with some evidence dating back to iOS 7.

Citizen Lab and Lookout informed Apple of the vulnerabilities and the company worked quickly to implement a fix, patching the exploits in just 10 days.

Related Forum: iOS 9

Popular Stories

iOS 26

iOS 26.4 Adds Two New Features to CarPlay

Tuesday March 24, 2026 1:55 pm PDT by
iOS 26.4 was released today, and it includes a couple of new features for CarPlay: an Ambient Music widget and support for voice-based chatbot apps. To update your iPhone 11 or newer to iOS 26.4, open the Settings app and tap on General → Software Update. CarPlay will automatically offer the new features so long as the iPhone connected to your vehicle is running iOS 26.4 or later....
Read Full Article25 comments
Apple Business hero

Apple Unveils 'Apple Business' All-in-One Platform

Tuesday March 24, 2026 8:53 am PDT by
Apple today announced Apple Business, a new all-in-one platform that unifies device management, productivity tools, and customer outreach features. The service is designed to be a consolidated replacement for several of Apple's existing business-focused offerings, including Apple Business Essentials, Apple Business Manager, and Apple Business Connect. It provides organizations with a single...
Read Full Article46 comments
AirPods Pro Firmware Feature

Apple Releases New Firmware for AirPods Pro 3, AirPods Pro 2 and AirPods 4

Tuesday March 24, 2026 12:31 pm PDT by
Apple today released new firmware for the AirPods Pro 2, AirPods Pro 3, and the AirPods 4. The firmware has a version number of 8B39, up from 8B34 on the AirPods Pro 3, 8B28 on the AirPods Pro 2, and 8B21 on the AirPods 4. There is no word on what's included in the firmware, but Apple has a support document with limited notes. Most updates are limited to bug fixes and performance...
Read Full Article88 comments

Top Rated Comments

Michael Goff Avatar
Michael Goff
125 months ago
Is it odd that Apple would release so many updates to iOS over a year? We're at iOS 9.3.5 now.

Think back to iOS 7, we got to 7.1.2.
I like the new Apple that doesn't just sit and hope. I like it that they seem to be pushing forward with more fixes.
Score: 51 Votes (Like | Disagree)
6
639051
125 months ago
Hmmm. Really? "pushing forward with more fixes"? What about push forward with a release that doesn't require fixes when released. Isn't this like "a ship with a hole in the bottom, leaking water, and job is to get the ship pointed in the right direction"?
Going to throw this out there. Since it is obviously so simple of a task in the minds of many here at Macrumors, why don't you all band together and DO IT YOURSELF? What a novel concept, right? Since it obviously requires just rolling up the sleeves and digging in it should be doable by anyone!

Seriously, you can put up or shut up as far as I am concerned. Reducing the an extremely complex issue to "they should just do it!!!!" is asinine.
Score: 40 Votes (Like | Disagree)
C
cale508
125 months ago
Not surprising, they are leaving iOS 9 as secured as possible for devices not making it into iOS 10.
Score: 22 Votes (Like | Disagree)
6
639051
125 months ago
What I'm saying is, maybe the releases are too premature before being made publicly available.
What I am saying is, you have no clue how anything in software development works if you expect a perfect world like you seem to imagine.
Score: 19 Votes (Like | Disagree)
Michael Goff Avatar
Michael Goff
125 months ago
that ain't my job buddy - but I did pay Apple $1,400 for an iPP and $800 for an iPhone to supposedly avoid this.
If you paid Apple to avoid updates, you screwed up. Go get a Lenovo Android phone. You won't have to worry about OS updates on that device.
Score: 16 Votes (Like | Disagree)
U
urtules
125 months ago
I wonder if I can get these patches while jailbroken on 9.3.3.
Why do even bother. The fact that your device is jailbroken is already main security problem.
Score: 15 Votes (Like | Disagree)
Read All Comments