Are your cryptos truly safe on your iPhone? In 2026, a new cybersecurity alarm has been sounded by Charles Guillemet, the CTO of Ledger, a leading hardware wallet manufacturer. He sheds light on a powerful, state-level iOS exploitation kit called Coruna, capable of compromising iPhones from iOS 13 up to iOS 17.2.1. Originally crafted to serve government surveillance, Coruna’s hacking tools have now leaked into the hands of criminal groups. This betrayal has transformed the iPhone—a device we commonly trust with our digital finances—into a vulnerable target for cyber attackers aiming to steal cryptocurrency assets stored in popular mobile wallets. With over 23 distinct vulnerabilities enabling full device takeovers from a simple web visit, the risk has escalated to historic levels, recalling infamous exploits like EternalBlue’s impact on Windows years ago.
Coruna’s reach extends beyond mere espionage. It is weaponized to siphon cryptocurrencies from well-known apps such as MetaMask, Trust Wallet, and Exodus Wallet, as well as extract sensitive seed phrases saved in Apple Notes or photos. This threat highlights a brutal and straightforward attack path: keep keys on your iPhone, unknowingly visit a compromised site, and face the catastrophic loss of your digital fortune. Recent investigations estimate dozens of thousands of iPhones are already affected, with hundreds of millions potentially vulnerable worldwide.
This exposure underlines the urgent need to rethink crypto security strategies in 2026. The rapid evolution of cybersecurity threats demands vigilance, especially when handling digital wealth on mobile devices. For beginners eager to protect their investments, understanding such vulnerabilities is vital in navigating the ever-challenging world of cryptocurrency security.
In brief:
- Coruna, a modular iOS hacking toolkit developed initially for state surveillance, now exploited by criminals.
- The toolkit affects iPhones from iOS 13 to iOS 17.2.1, leveraging 23 vulnerabilities for complete device compromise.
- Popular crypto wallets on iPhone like MetaMask, Trust Wallet, and Exodus are directly targeted to steal funds.
- The risk involves simple web visits, making secure handling of crypto on mobile imperative.
- Ledger CTO calls this a “moment EternalBlue” for iOS security, drawing parallels to past impactful exploits.
Understanding the Security Risks to Your Cryptos on iPhone in 2026
The digital realm continuously surprises us with its evolving threats. This year, the discovery of Coruna marks a significant turning point. Unlike conventional malware, Coruna operates like a precision instrument designed to infiltrate iPhones quietly and efficiently. What began as a tool for government intelligence swiftly expanded into the hands of cybercriminals, threatening anyone who dares to keep cryptocurrencies on their mobile wallets.
The core danger stems from 23 identified vulnerabilities, which together allow attackers to execute a full device takeover after a single, unsuspecting website visit. Imagine that—a few seconds on a compromised page and your private keys, seed phrases, and crypto balances could be swept away. The fact that this affects devices as recent as those running iOS 17.2.1 drives home the message that no iPhone user is immune.
Ledger’s CTO has been vocally raising awareness on this issue, emphasizing how the theft of cryptocurrency via these exploits is now alarmingly trivial. Where once hardware wallets offered a near-impenetrable fortress, mobile wallets on iPhones are now exposed to amplified risks. This knowledge forces us to reflect deeply on our digital asset management strategies and consider enhancing security or shifting assets into safer environments.

Ledger CTO’s Warning: What Does It Mean for Everyday Crypto Users?
Charles Guillemet, as CTO of Ledger, is not just speaking as a technology expert; he represents the frontline of crypto security defense. His warning about Coruna resonates because this exploit bypasses traditional safeguards by targeting software weaknesses in iPhones directly. Unlike phishing scams or exchange hacks, Coruna’s exploit doesn’t require you to click on malicious links or download suspicious apps—it can operate silently from trusted environments.
This vulnerability turns smartphones, often viewed as secure vaults for digital identity, into potential gateways for attackers to access cryptocurrency fleets. It’s no exaggeration to say that your iPhone could be the weak link in your crypto security chain. For newcomers, this means taking extra precautions is essential, such as favoring hardware wallets for significant holdings and using multi-factor authentication wherever possible.
Moreover, staying informed by following cybersecurity updates and using trusted resources like the detailed crypto security checklists can help fortify your defenses. Awareness and action must accompany passion in the cryptosphere.
How to Protect Your Cryptocurrency from iPhone Vulnerabilities
With threats like Coruna, maintaining cryptocurrency security is no longer just about strong passwords or trusted wallets; it’s about understanding your device’s vulnerability landscape. Ledger’s CTO suggests that mobile wallets on iPhones harbor more risk than previously acknowledged. Here are ways to mitigate these risks and secure your crypto journey:
Primarily, using hardware wallets that provide a physical layer of security can drastically reduce exposure, as they keep private keys offline. Ledger hardware wallets remain among the best choices for beginners and experienced users alike, offering clear transaction signing and an isolated environment immune to software-level exploits.
Additionally, avoid storing seed phrases or keys in common note-taking apps or photo libraries on your iPhone, as Coruna leverages direct access to such data stores. Always use encrypted and dedicated password managers for this sensitive information.
Consider adopting a layered approach—storing small amounts on mobile wallets for convenience while safeguarding the bulk of your crypto assets in hardware wallets or cold storage solutions. Such prudent habits preserve your investments from silent hacking campaigns sweeping through millions of devices globally.
