iOS version 11.2.6 was released on Feb 19, 2017. One vulnerability is fixed in this security update: a CoreText vulnerability. This vulnerability allows certain texts to freeze and crash apps forcing users to delete and reinstall the apps. The vulnerability is reported to be exploited widely not only via private messages, but also via Tweets.
Enhance Your Security by Keeping Up with OS Updates
Enterprise users should note that, although Apple has fixed the vulnerability with the 11.2.6 update, the security benefits are not reflected on their devices unless users update the OS to this latest version. Thus, before attackers exploit these vulnerabilities, enterprise users should go to “Settings > General > Software Update” and update their iOS devices to the latest version.
OS updates are among the easiest and most cost-effective ways to prevent attacks from exploiting holes in older operating systems and we certainly recommend updating to this latest OS release given the numerous security updates it provides.