A sophisticated iPhone hacking toolkit, dubbed Coruna, has been uncovered by Google security researchers, exploiting 23 distinct vulnerabilities in iOS to silently install malware on devices1. This toolkit comprises five complete hacking techniques, capable of bypassing iPhone defenses when a user visits a malicious website. The complexity and scope of Coruna suggest it was developed by a well-resourced, likely state-sponsored entity. The leak of this toolkit has significant implications, as it may be linked to a US government hacking tool. The fact that Coruna can bypass all iPhone defenses raises concerns about the security of iOS devices. The involvement of state-aligned actors shifts the threat model from traditional cybercrime to geopolitical, requiring a different approach to mitigation and defense. This leak matters to practitioners because it highlights the need to reassess their threat models and consider the potential for state-sponsored hacking activity.