Endpoint Security Apple Debuts Background Security Improvements With Fresh WebKit Patches The lightweight updates are meant to deliver security protections between security updates. By Ionut Arghire | March 18, 2026 (8:35 AM ET) Flipboard Reddit Whatsapp Whatsapp Email Apple on Tuesday introduced a new security update mechanism for the latest mobile and desktop platforms to deliver protections at a faster pace. Called Background Security Improvements, the feature debuted with a fresh round of WebKit patches but supports other platform components as well. “Background Security Improvements deliver additional security protections between software updates,” the tech giant explains . The new mechanism is designed to deliver lightweight security fixes for components such as Safari, WebKit, and various system libraries “that benefit from smaller, ongoing security patches”, it notes. Currently, the feature is supported and enabled in iOS 26.1, iPadOS 26.1, and macOS 26.1. Future platform iterations will also support it, but Apple warns that the mechanism could be disabled if it causes problems. “In rare instances of compatibility issues, Background Security Improvements may be temporarily removed and then enhanced in a subsequent software update,” Apple says. Advertisement. Scroll to continue reading. Users can access and modify the Background Security Improvements settings from the Privacy and Security menu. To benefit from the feature, users should make sure the ‘Automatically Install’ option is turned on. The improvements will not be rolled out to devices with the option turned off until a regular security update is delivered. “If a Background Security Improvement has been applied, and you choose to remove it, your device reverts to the baseline software update (for example, iOS 26.3) with no Background Security Improvements applied,” Apple explains. The first lightweight security protections delivered using this mechanism target CVE-2026-20643, described as a cross-origin bug in WebKit that could be exploited through malicious web content. The security defect, Apple notes in its advisory , impacted the Navigation API and was addressed with improved input validation. The update was pushed out as iOS 26.3.1 (a), iPadOS 26.3.1 (a), macOS 26.3.1 (a), and macOS 26.3.2 (a). Related: Apple Updates Legacy iOS Versions to Patch Coruna Exploits Related: Apple iPhone and iPad Cleared for Classified NATO Use Related: Apple Patches iOS Zero-Day Exploited in ‘Extremely Sophisticated Attack’ Related: Apple Patches Two Zero-Days Tied to Mysterious Exploited Chrome Flaw Written By Ionut Arghire Ionut Arghire is an international correspondent for SecurityWeek. More from Ionut Arghire Tracebit Raises $20M for Cloud-Native Deception Technology CISA Flags Year-Old Wing FTP Vulnerability as Exploited Security Firm Executive Targeted in Sophisticated Phishing Attack China-Linked Hackers Hit Asian Militaries in Patient Espionage Operation Threat Actor Targeting VPN Users in New Credential Theft Campaign ForceMemo: Python Repositories Compromised in GlassWorm Aftermath Critical HPE AOS-CX Vulnerability Allows Admin Password Resets Bold Security Emerges From Stealth With $40 Million in Funding Latest News Iranian Hackers Likely Used Malware-Stolen Credentials in Stryker Breach Researcher Discovers 4th WhatsApp View Once Bypass; Meta Won’t Patch Tech Giants Invest $12.5 Million in Open Source Security UK Companies House Exposed Details of Millions of Firms Surf AI Raises $57 Million for Agentic Security Operations Platform Robotic Surgery Giant Intuitive Discloses Cyberattack 174 Vulnerabilities Targeted by RondoDox Botnet Google, Meta, Microsoft Among Signatories of Pact to Combat Scams Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Securing Fragile OT in an Exposed World March 10, 2026 Get a candid look at the current OT threat landscape as we move past "doom and gloom" to discuss the mechanics of modern OT exposure. Register Virtual Event: Supply Chain Security and Third-Party Risk Summit March 18, 2026 Join the event where top security experts unpack the biggest software supply chain risks. Register People on the Move Nudge Security has appointed Patrick Dillon as Chief Revenue Officer. Arctic Wolf has named Will May as its Chief Revenue Officer. Palo Alto Networks has named Danielle Gonzalez as its new Chief People Officer. More People On The Move Expert Insights The Human IOC: Why Security Professionals Struggle with Social Vetting Applying SOC-level rigor to the rumors, politics, and 'human intel' can make or break a security team. (Joshua Goldfarb) How to 10x Your Vulnerability Management Program in the Agentic Era The evolution of vulnerability management in the agentic era is characterized by continuous telemetry, contextual prioritization and the ultimate goal of agentic remediation. (Nadir Izrael) SIM Swaps Expose a Critical Flaw in Identity Security SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts. (Torsten George) Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Flipboard Reddit Whatsapp Whatsapp Email