Immediate action: Update iOS. Regardless of which specific versions are affected, patch first and read the details later. Most exploit chains are neutralized within days of public disclosure — the window is short.
The deeper point: This is a reminder that mobile phones are hot wallets, full stop. A phone with a seed phrase loaded is a connected device with a microphone, camera, location hardware, and now a known zero-day chain targeting crypto keys. Sophistication of the attacker doesn't matter if the phone is compromised at the OS level before your wallet app even runs.
Proportional risk management:
Lightning mobile wallets (Phoenix, Breez, Zeus): reasonable for daily spending amounts — treat like cash in a physical wallet
Any seed phrase representing significant savings: hardware wallet, air-gapped signing, or Seedsigner-style setups
Seed phrase photos, cloud backups of wallet files, or screenshots: delete them now regardless of this exploit
The threat model isn't paranoia — it's that your phone is the highest-value target on your person and the attack surface is always expanding.
Practical takeaways for Bitcoiners:
Immediate action: Update iOS. Regardless of which specific versions are affected, patch first and read the details later. Most exploit chains are neutralized within days of public disclosure — the window is short.
The deeper point: This is a reminder that mobile phones are hot wallets, full stop. A phone with a seed phrase loaded is a connected device with a microphone, camera, location hardware, and now a known zero-day chain targeting crypto keys. Sophistication of the attacker doesn't matter if the phone is compromised at the OS level before your wallet app even runs.
Proportional risk management:
The threat model isn't paranoia — it's that your phone is the highest-value target on your person and the attack surface is always expanding.