Author: Richard

### Overview of Security Enhancements in Safari 26.5

Apple has recently unveiled Safari 26.5, which encompasses essential security enhancements tackling various vulnerabilities, especially within WebKit. This article summarizes the primary security enhancements and their effects on users.

#### Vulnerabilities in WebKit

Safari 26.5 addresses 20 vulnerabilities found in WebKit, the core engine that operates the browser. These vulnerabilities might enable maliciously crafted web content to endanger user data or induce unforeseen behavior within the browser. Below are specifics on some notable vulnerabilities:

1. **CVE-2026-43660**: A validation flaw that could hinder the enforcement of Content Security Policy. This was rectified with refined logic.
– **WebKit Bugzilla**: 308906

2. **CVE-2026-28907**: Like the previous one, this flaw was resolved with enhanced input validation.
– **WebKit Bugzilla**: 308675

3. **CVE-2026-28962**: This vulnerability could expose sensitive user information due to insufficient access restrictions, which have now been tightened.
– **WebKit Bugzilla**: 309698

4. **CVE-2026-43658**: An issue that caused unexpected crashes in Safari has been tackled with improved memory management.
– **WebKit Bugzilla**: 307669

5. **CVE-2026-28905**: Another crash-related issue addressed through better memory management.
– **WebKit Bugzilla**: 308545

6. **CVE-2026-28958**: This vulnerability permitted apps to access sensitive user data, which has been lessened with enhanced data protection.
– **WebKit Bugzilla**: 311228

7. **CVE-2026-28971**: A malicious iframe could take advantage of another website’s download settings, which has been corrected with improved UI handling.
– **WebKit Bugzilla**: 311288

#### Vulnerability in WebRTC

Along with WebKit vulnerabilities, Safari 26.5 also addresses a major problem in WebRTC:

– **CVE-2026-28944**: This vulnerability could trigger unexpected process crashes during the handling of malicious web content. The issue has been remedied with enhanced memory management.
– **WebKit Bugzilla**: 311131

#### Conclusion

For users operating on macOS Sonoma and macOS Sequoia, it is strongly advised to upgrade to Safari 26.5 to ensure defense against these vulnerabilities. Keeping your browser current is vital for maintaining security and protecting sensitive data. For additional information regarding the security aspects of this update, refer to Apple’s official documentation [here](https://9to5mac.com/2025/12/12/26-2-here-are-the-security-fixes-for-all-of-apples-operating-systems/).

As per Counterpoint Research, Apple surpassed the larger US smartphone market in Q1 2026, fueled by substantial interest in the iPhone 17 amidst a downturn in Android sales.

### iPhone Experienced 1.3% Year-over-Year Rise in US Sales During Q1 2026

Counterpoint’s analysis reveals that Apple saw a 1.3% year-over-year growth in iPhone sales in the U.S. during the initial quarter of 2026, sharply contrasting with a 5.7% drop in the overall smartphone market. This increase was linked to strong demand for the standard iPhone 17 model and the postponed release of Samsung’s Galaxy S26 series, which typically launches in January or February but was only available in mid-March this year. This holdup created a short-term gap in the premium smartphone sector, enabling Apple to gain more sales.

Consequently, the iPhone represented 75% of smartphone sales at the three main US carriers in Q1 2026, rising from 72% the year before. Importantly, Apple’s market share rose notably at Verizon, hitting 77%.

Another element aiding Apple’s achievement was its pricing strategy in response to increasing memory costs. Apple kept the pricing of the iPhone 17e steady while upgrading the base storage to 256GB, unlike rivals who elevated their prices.

Counterpoint’s report emphasizes that Apple outshone Samsung in promotional activities for devices priced at $600 and above in US postpaid channels. Apple bolstered its promotional strength in this category year-over-year, while Samsung’s promotional initiatives waned. This pattern indicates that if Apple continues to avoid major price hikes and uphold its promotional edge, it may prove difficult for Android manufacturers to remain competitive in the coming year.

For more information, you can read Counterpoint Research’s complete report [here](https://counterpointresearch.com/en/insights/apple-bucks-us-smartphone-sales-decline-in-q1-2026).

Apple today filed a complaint with the European Commission opposing suggested actions that would require Google to make parts of Android accessible to competing AI services. Here are the specifics.

### Apple supports Google in opposing EU-imposed modifications to Android

Last month, the European Commission put forth a set of proposals intended to assist Google in adhering to the area’s Digital Markets Act (DMA). Among these were proposed alterations that would grant competing AI services enhanced access to various Android functions, enabling them to connect with installed applications to execute tasks like sending emails, ordering food, or sharing images.

At that time, EU antitrust lead Teresa Ribera mentioned that these suggested actions would provide Android users with increased options regarding the AI services they select and incorporate into their devices. Google, on the other hand, described them as an “unjustified interference” that would compromise “essential privacy and security safeguards for European users,” as reported by Reuters.

The European Commission allowed third-party entities until today, May 13, to provide their input. The Commission is anticipated to announce its final ruling in July regarding whether Google’s approach aligns with the DMA.

Today, Apple presented its own input, condemning the EU’s suggested actions and cautioning that they could introduce “privacy, security, and safety” hazards.

As stated by Reuters:

> “The DMs (draft measures) provoke urgent and substantial apprehensions. If validated, they would pose significant risks to user privacy, security, and safety, along with device integrity and functionality,” Apple expressed in its submission.
>
> “These dangers are especially pronounced in the context of swiftly progressing AI systems whose features, behaviors, and threat vectors remain unpredictable, as we are currently observing repeatedly,” it added.

Apple also allegedly contended that the European Commission is attempting to overhaul Android based on “less than three months of effort,” overriding decisions made by Google’s own engineers throughout years of operating system development.

To access Reuters’ complete report, click this link.