Corellium 7.9 expands device coverage across all supported iOS/iPadOS versions from legacy releases like 12.5.8 up through the newest 26.x builds (including beta tracks of 26.2.0/26.3.0 for SA Premium Falcon and full GA access to 26.3.0) giving you a seamless testing environment on every modern Apple ecosystem; it also adds a one-click "Take Screenshot" button in the UI that instantly downloads a local copy of any iOS/iPadOS or Android virtual device screen without ever writing the image back into the device's camera roll, eliminating export steps and preserving anytime forensic integrity; finally, you can now toggle WAN access on or off at creation time or anytime thereafter, allowing instant isolation to prevent data leakage or evidence alteration, or grant targeted internet connectivity for specific analysis steps. And finally, a brand-new Cluster Administrator role grants web-UI console access that eliminates SSH requirements to the appliance console(s), plus a new unified snapshot management-- clone, restore, rename, share, delete, global limits, and cross-node control, so you can manage every on-premises appliance completely through the platform. Together, these enhancements provide broader OS support, an immediate screenshot workflow, and precise network control all within a secure, unified Corellium platform.

Mobile OS Support

We've expanded our platform's compatibility with the latest mobile operating system versions:

iOS/iPadOS​

• iOS/iPad OS 15.8.6
• iOS/iPad OS 16.7.14
• iOS/iPad OS 18.7.4
• iOS/iPad OS 18.7.5
• iOS/iPad OS 26.2.0 (Betas 1-3 for SA Premium Falcon only; RC1, RC2, RC3/GA for everyone)
• iOS/iPad OS 26.2.1
• iOS/iPad OS 26.3.0 (Betas 1-3 for SA Premium Falcon only; RC1 and RC2/GA for everyone)

New Features

WAN Access Toggle for Virtual Devices​

• New Capability: Virtual devices now expose a built‑in switch that can enable or disable WAN (Internet) connectivity at any time.
• Where to Configure:
  • During Creation: Choose “WAN Enabled” or “WAN Disabled” when initially provisioning the VM/Phone.
  • Post‑Creation: Open the device’s settings panel and toggle Internet access on/off whenever you need it—no reboot required.
• Use Cases:
  • Data Isolation & Leakage Prevention – Turn off WAN to create an air‑gapped environment for forensic or malware analysis, ensuring no external traffic can exfiltrate data.
  • Evidence Preservation – Keep a device completely offline while capturing logs or snapshots, then restore connectivity later to pull results.
  • Controlled Access – Grant network access only at specific analysis steps (e.g., when downloading samples, uploading test results, or calling an external API).
• Impact: Provides granular networking control without needing external firewalls or host‑level ACLs, streamlining secure testing workflows and reducing the risk of unintended data leakage.

One‑Click Screenshot Capture (iOS/iPadOS & Android)​

• New UI Control: A dedicated “Take Screenshot” button now appears alongside the existing volume, lock, and other device‑control icons on every virtual device.
• Instant Download: Clicking the button automatically downloads a high‑resolution screenshot to your local workstation – no manual export steps required.
• No Camera‑Roll Placement: The image is captured and saved externally; it never gets written back into the device’s Photos/Camera Roll, keeping the virtual environment pristine for forensic or analytical workflows.
• Supported Platforms: Works identically on both iOS/iPadOS virtual devices and Android virtual devices, eliminating platform‑specific export gymnastics.
• User Benefit: Enables rapid, repeatable capture of UI states, logs, error messages, or any visual evidence without leaving the Corellium console or interrupting your analysis flow.

Administrative Changes

Cluster Admin Management​

We're introducing a new user role and administrative capabilities designed specifically for managing on-premises appliances. The new Cluster Administrator role provides access to advanced troubleshooting and management tools that previously required direct command-line access.

New Capability: Appliance Console Access

• Cluster Administrators can now access the appliances's command line console directly within the web UI.
• Eliminates the need for direct serial or SSH access to appliances.
• Provides a secure, centralized interface for advanced troubleshooting.
• Available for all on-premises appliance deployments.

New Capability: Snapshot Management

• Cluster Administrators can now manage any and all device snapshots from a single location.
• Clone, Restore, Rename, Share, and Delete snapshots.
• Globally set number of snapshots allowed per device.
• Manage snapshots across all compute nodes of a clustered server environment.

These capabilities significantly reduce the need for manual intervention from Corellium Support teams, providing customers with greater autonomy and control over their on-premises appliance environments.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

As we close out the year with our final release of 2025, this version was primarily focused on backend enhancements and bug fixes. However, there are some notable feature highlights worth mentioning. We now support the latest versions of iOS and iPadOS 26.1, as well as 26.2 beta releases for our on-premises Premium customers. Additionally, we've introduced new capabilities when uploading device firmware/IPSWs and improved error messaging with more meaningful feedback if a MATRIX test fails to run against an app.

Mobile OS Support

We've expanded our platform's compatibility with the latest mobile operation system versions:

Android

• Android 13 revisions

iOS/iPadOS

• iOS/iPad OS 26.1.0 (Betas 1-4 & RC1 for SA Premium Falcon only; GA for everyone).
• iOS/iPad OS 26.2.0 (Beta 1-2 for SA Premium Falcon only).

New Features

Enhanced Firmware/IPSW Upload

The latest release marks the first phase in the comprehensive revamp of our firmware management system, introducing an enhanced web-based interface that simplifies the upload process for firmware image files without requiring command line access. This user-friendly platform features a straightforward drag-and-drop interface that supports both individual and batch uploads, complete with progress indicators to efficiently manage large files.

MATRIX: Specific Test-Failed Messages

We have improved the feedback in MATRIX by providing more meaningful context when a test fails. This update helps you better understand what happened and makes it easier to determine next steps.

Other Enhancements

Update Frida Versions

In this latest update, we've made significant enhancements and resolved several bugs in the built-in versions of Frida 17, available on both iOS/iPadOS and Android platforms. These improvements aim to bolster performance and reliability ensuring seamless integration and functionality within our testing environments. The updates address previously reported issues, enhancing the overall user experience and extending the capabilities of our debugging tools.

Bug Fixes and UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. iOS performance is faster, Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

We appreciate your continued support as we strive to improve Corellium. We hope these updates will contribute to your success in 2025 and beyond. Please feel free to reach out with any questions or feedback.

From all of us here at Corellium, we wish you a happy holiday!

Overview​

Corellium 7.7 delivers a streamline, high value update for mobile security teams. The release brings support for the latest mobile operating systems -iOS and iPad OS 18.7 as well as 26.0- so you can test, debug, and reverse-engineer on the newest platforms right away. A new MATRIX risk score is now displayed for every app, giving you an instant gauge of risk and the ability to track progress across multiple releases and tests runs. Additionally, creating a new virtual device has become more flexible: you can now specify the primary storage size directly in the Advanced Boot Options and Configure Your Device pages, with appropriate UI choices for iOS, Android, and IoT devices. Together, these enhancements make Corellium 7.7 a powerful, user-friendly platform for the modern threat landscape.

Mobile Model Support​

We've expanded our platforms compatibility with the latest mobile models:

iPhone

• iPhone 17
• iPhone 17 Pro
• iPhone 17 Pro Max
• iPhone Air

Corellium's Support for Apple's Memory Integrity Enforcement on iPhone 17 Models

Corellium delivers support for Apple's Memory Integrity Enforcement (MEI) by leveraging Arm's Memory Tagging Extension (MTE) architecture. Corellium has implemented an instruction-only MTE mode that allows iPhone 17 models to execute MIE instructions, although the hardware-enforced tag checks are disabled. Because the MTE implementation does not enforce tag validation, researchers can run and observe MIE instructions in iPhone 17 models but cannot exercise or evaluate the actual enforcement semantics that would be present on fully-supported Apple hardware. This setup enables exploration of MIE instruction behavior and its integration with Apple's runtime, while transparently communicating the limitation that enforcement is not available in the current Corellium environment.

Mobile OS Support​

We've expanded our platform's compatibility with the latest mobile operating system version:

Android

• Android 16

iOS/iPad OS

• iOS 15.8.5
• iOS 16.7.12
• iOS/iPad OS 18.7.x
• iOS/iPad OS 26.0.x

New Features​

User Resizable Devices

New Primary Storage Volume Selection

• Flexible Storage Sizing - When creating a new virtual device, you can now specify the size of the primary storage volume directly in the Advanced Boot Options and Configure Your Device pages.
• Platform-specific UI
  • iOS & Android - Dropdown lists of supported sizes (based on the selected flavor)
  • IoT - Either a text input with step-increments (if the flavor defines min/max/step) or a pre-configured dropdown list.
  • If your license has MATRIX enabled, you'll see a MATRIX warning when selecting cores, RAM, and storage.
  • If MATRIX is not enabled, the warning is omitted.

MATRIX Score

• Risk-Based Scoring - The MATRIX Score is a real-time, computed "risk score" that calculates based on the number of vulnerabilities and their security levels identified during a mobile application security test.
• Dynamic Updating - As your AppSec team nullifies findings or adjusts severities, the score is refreshed automatically to reflect the current risk posture.
• Audit-Ready Log - Every modification (nullification, severity change, evidence edit) is recorded in an immutable audit trail, ensuring full traceability for compliance and governance.

How It Works

1. Run a Test - Perform a standard MATRIX test on your mobile app.
2. Review Findings - Inspect the findings list; each item carries a severity weight.
3. Adjust Findings - Nullify or re-severity findings directly in the UI.
4. See the Score Update - The MATRIX Score panel updates instantly, giving you a live view of your app's risk level.
5. Audit Trail - Click the "Activity" tab in the report to view every change made to the findings, with timestamps, name of the user, and action details.

Benefits

• Immediate Visibility - Quickly gauge how remediation actions impact overall risk.
• Prioritization Aid - Use the score to focus resources on high-impact vulnerabilities.
• Compliance-Ready - The audit log provides the evidence needed for security audits and regulatory reporting.
• High-Level KPI - Provides a key performance indicator to track risk trends over time throughout the software development lifecycle.

Other Enhancements​

Bug Fixes and UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

Overview​

Corellium 7.6 delivers comprehensive enhancements focused on regulatory compliance, mobile OS support, and administrative capabilities. This release strengthens our platform's security testing capabilities with expanded compliance mapping for critical regulations while providing support for the latest mobile operating systems versions. The update empowers system administrators with advanced management tools and streamlines security testing workflows through enhanced automation and flexibility.

Mobile OS Support​

We've expanded out platform's compatibility with the latest mobile operating system versions:

iOS/iPadOS

• iOS/iPadOS 18.6.0 and 18.6.1 General Availability (GA) versions
• iOS/iPadOS 18.6 and 26 Betas (on-premises Falcon Premium only)

Administrative Changes​

Cluster Admin Management

We're introducing a new user role and administrative capabilities designed specifically for managing on-premises appliances. The new Cluster Administrator role provides access to advanced troubleshooting and management tools that previously required direct command-line access.

Key Capability: Appliance Console Access

• Cluster Administrators can now access the appliances's command line console directly within the web UI.
• Eliminates the need for direct serial or SSH access to appliances.
• Provides a secure, centralized interface for advanced troubleshooting.
• Available for all on-premises appliance deployments.

Preserve User Data Installer Page (onsite)

Enhanced support for on-premises appliance reconfigurations with improved data preservation capabilities:

• Cluster Expansion: User data is now automatically preserved during cluster expansion operations.
• Network Reconfigurations: Seamless network updates without manual intervention from Corellium Support.
• Certificate Updates: Server certificate management with automatic data preservation.
• Appliance Configuration Changes: All configuration updates maintain user data integrity.

These capabilities significantly reduce the need for manual intervention from Corellium Support teams, providing customers with greater autonomy and control over their on-premises appliance environments.

New Features​

iOS Front Camera

Enhanced camera testing capabilities for iOS devices that support camera functionality:

• Ability to switch between rear and front cameras during application testing.
• Utilizes standard camera switching features within the Camera app.
• Enables comprehensive testing of camera-dependent applications.

iOS Camera QR Code Detection and Decoding

New QR code handling for iPhone 8 + iOS 16, using the back camera:

• Swift detection and decoding of QR codes using iOS device camera.
• Seamless interaction with printed materials for quick information retrieval.
• Supports URL browser shortcut QR codes.
• Handles deep link QR codes that launch specific apps and pre-populate information.

iOS Keychain Export Enhancement

Enhanced keychain management: Users can now easily export device or app specific keychains directly from iOS and iPadOS devices:

• Export entire device keychain or application-specific keychain portions.
• Eliminates need to run MATRIX tests for keychain data
• Provides instant access to full device keychain data.
• Streamline workflow for security testing and analysis.

MATRIX: Upload Frida Script to Run When Opening App

You can now upload a Frida script directly in the MATRIX test configuration. The script will automatically run when we launch the application for monitoring, allowing you to bypass security controls or apply custom runtime logic during your scans.

MATRIX: Enhanced Compliance Mapping

Each check in the MATRIX report now includes expanded compliance mapping. Alongside OWASP, CVE and CWE, you'll see coverage for PCI DSS v4, GDPR and HIPAA, making it easier to align results with key regulatory requirements.

Other Enhancements​

Network Mode Options for SA Clusters

Enhanced network management: The server appliance (SA) now allows customers to easily switch Network Type between Bridged, Routed, and NAT mode when reconfiguring the cluster via the admin tab.

Key Benefits for Customers:

• Flexible Network Topology: Choose the most appropriate network configuration for specific testing scenarios.
• Simplifies Reconfiguration: No need for manual intervention or command-line access to change network modes.
• Enhanced Testing Capabilities: Support for different network environments including bridged (direct access), routed (controlled routing), and NAT (isolated network) configurations.
• Preserve User Data Feature: Changing network field options (i.e., network domain name / IP, etc.) no longer requires a "Reset Corellium", instead use "Reconfigure Corellium".

Frida Version Update

Frida 17 integration: Following the release of Frida 17 for iOS/iPadOS devices in version 7.5, we've now updated Android devices to Frida 17 as well, providing consistent tooling across all supported platforms.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

• Updated usability for our on-premise users to gain parity with the 7.5.0 cloud release

• Various bug fixes and enhancements

Status​

Cloud: Released

Overview​

The release of Corellium 7.5.0 introduces significant enhancements with MATRIX, marking the most comprehensive update since its launch last August. This version elevates user experience and functionality through improvements in report design, customization options, and enhanced tracking capabilities, delivering clearer insights and more actionable security assessments.

Key updates include a redesigned MATRIX report that enhances readability with a new horizontal summary layout and visual enhancements. The introduction of a User Activity Log allows comprehensive tracking of all changes within an assessment, ensuring accountability. Users can now mark specific checks as "Not Applicable" when irrelevant to their environment, and adjust result severities directly in reports for tailored analysis.

Additional features include the ability to suppress individual pieces of evidence within results, focusing attention on critical issues and reducing report clutter. These improvements reflect across both online interfaces and downloadable HTML formats.

Beyond MATRIX updates, Corellium 7.5.0 includes other enhancements such as API endpoint documentation updates, latency improvements for faster response times, and updates to internal tools like Frida. This release solidifies the Corellium platform as a powerful tool for effective security management and analysis.

Features​

Improved Preservation of User Data for Corellium On Premises Appliances

Corellium is addressing a critical concern among on-site appliance users regarding data preservation during server migrations, network configuration changes, or capacity upgrades. Many customers have experienced data loss when attempting these adjustments due to current system limitations that inadvertently trigger database resets. This release introduces an essential enhancement allowing users to update their configurations without losing valuable customer data.

MATRIX

Report Redesign:

We have enhanced the MATRIX report to increase readability and transparency within your assessments. The report now features a horizontal summary layout with visual enhancements, new N/A status for checks, as well as additional metadata field for Last Modified. These design updates are also reflected within the downloadable HTML MATRIX report.

New User Activity Log:

We are excited to announce the addition of an all-new User Activity Log within MATRIX assessments. This new feature will offer a comprehensive log of all changes made within an assessment. This includes information on the scan including who started the scan, when monitoring was started or stopped and will also include a log of any modifications made to the report including adjusting severities, changing a check status or suppressing check evidence. This log will also be available within the HTML generated report.

New Result Status – “Not Applicable”:

We have now introduced a new result status for checks, “Not Applicable” (N/A). If a particular vulnerability does not apply to your environment or application, you can now change the status to N/A, and the change will immediately be reflected in the report summary, MATRIX history, and the newly added user activity log. With this addition, we have added the ability to revert a single change or revert all modifications made to the report. All modifications will be reflected in the associated HTML report.

Updatable Result Severities:

To further enhance MATRIX report customization, users can now change the severity of a result directly within the report. Whether you have compensating controls in place or adjusting severities based on business impact, you can make those adjustments as you see fit per result. These updates will immediately be reflected within the report summary, MATRIX history and the audit log with full support for reverting changes. Similar to the above additions, any modifications to severities can be seen in the downloaded HTML report.

Ability to Suppress Individual Evidence:

One last big addition: you can now suppress individual pieces of evidence within a result. Let’s say a check detects three hardcoded keys but only one is a concern — now you can suppress the irrelevant evidence, so the MATRIX report reflects what truly needs attention. Suppressed items are greyed out to keep things clear, and if all evidence for a result is suppressed, the result is automatically marked as Not Applicable. These updates help you reduce noise and make your reports cleaner and easier to act on. As with the other additions, the suppression can be reverted, and all modifications will be reflected within the HTML report.

Other Enhancements​

Improvements in Files Path Breadcrumb

In Corellium 7.5, we addressed an issue related to file navigation when pasting file paths. Previously, in version 7.4, entering a complete file path with the filename would mistakenly navigate users to the containing directory instead of directly to the specified file. This often led users to manually search for their desired file among numerous others in directories populated with many files.

With this update, if you paste a full file path—including the filename—into the File Browser, it now correctly highlights and displays only the specified file, mirroring the expected behavior of command-line ‘ls’ operations. This enhancement streamlines the navigation process, providing users with direct access to their intended files without unnecessary manual searching.

Files Path Breadcrumb Changes - MATRIX Deep Linking

A new capability has been added where you can simply click on an evidence path within a MATRIX report to be taken directly to the containing directory in the Files browser. This feature further enhances user experience by facilitating quick and easy navigation between reports and evidence file directories.

Update Android to Latest Revision - 14 & 15

Corellium 7.5 introduces a proactive approach to keeping Android environments up-to-date with the latest security and bug fixes from Google's AOSP builds. We continuously monitor updates for both Android 14 and Android 15, integrating these revisions into Corellium as they become available. This ensures that users benefit from the most current enhancements, maintaining robust security and performance in their virtualized Android environments.

Update Frida Versions​

We have updated our built-in Frida server and console to version 17.0.6. This upgrade brings enhanced functionality and performance improvements that leverage the newest features offered by Frida.

Key Considerations: While this update provides significant benefits, users should be aware that it may introduce compatibility issues with existing scripts designed for previous versions of Frida(specifically 16.x). As such, we recommend reviewing your scripts and testing them within Corellium 7.5 to ensure they function as expected with the updated Frida version.

Recommendations:

• Testing: Conduct thorough tests on all existing scripts that rely on Frida functionality.

• Script Updates: Adjust any script logic or dependencies that may be affected by changes in Frida 17.0.6.

• Documentation Review: Refer to the official Frida documentation for guidance on transitioning from version 16.x to 17.0.6.

API Endpoint Documentation Updates

Corellium 7.5 has introduced significant improvements to our API documentation, ensuring every endpoint is comprehensively detailed for user convenience and effectiveness.

Key Enhancements:

• Detailed Descriptions: Each API endpoint now includes thorough descriptions, making it easier for users to understand their purpose and usage.
• Response Types Clarified: Comprehensive information about all possible response types has been added to help anticipate various outcomes when using the endpoints.
• Practical Examples: Real-world examples have been incorporated to demonstrate how each endpoint can be effectively utilized in practical scenarios.

Documentation Review Process:

To achieve these enhancements, we conducted an extensive review of our API documentation available at Corellium API Docs . During this process:

• We meticulously evaluated each endpoint for completeness and clarity.
• Any endpoints lacking sufficient documentation were identified for further improvement.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly Experience.

• Updated usability for our on-premise users to gain parity with the 7.4.0 cloud release

• Various bug fixes and enhancements

Overview​

This release brings significant updates to our virtual device platform featuring Rapid Start for faster iOS and iPadOS device spin-ups, enhanced MATRIX support for Android, Binder Tracing with CoreTrace on Android, and other improvements.

For our appliance server and private cloud server customers, we added enhanced networking options, and the ability to reconfigure server clusters while applying updates.

For our on-premises server appliance customers, we’ve released a new generation of hardware based on the NVIDIA Grace platform that runs 2X faster than our prior generation.

OS Support Updates​

• iOS 18.4
• iOS 18.4.1
• iOS 18.5 betas (Falcon Premium customers only)
• iOS 18.5 RC1
• iOS 18.5 RC2

Rapid Start​

We are thrilled to unveil Rapid Start which makes spinning up virtual iOS and iPadOS devices 5X faster. Rapid Start innovation utilizes specialized snapshots of base firmware images to accelerate device startup time. Visual indicators during device creation identify which OS/model combinations support Rapid Start. If Rapid Start is not available for an OS/model combination you are looking for, it will be added after it boots up and removed if no one uses that combination for 30 days. This feature is currently only available to our cloud customers

MATRIX​

We’ve made several enhancements to MATRIX for automated MAST testing on Android. MATRIX would fail if the Android virtual device wasn’t created with a minimum of 4 CPU cores and 4GB of RAM, so we’ve added automated checking and improved error handling. We also optimized JVM (Java Virtual Machine) memory allocation to improve overall testing performance and reliability.

Binder Tracing for Android​

Akin to using CoreTrace for iOS XPC tracing, we’ve now added Android Binder tracing for IPC (inter-process communications). When the user runs CoreTrace and then downloads the CoreTrace file, the Android Binder transactions are now parsed. Previously, the message buffer in binder transaction syscalls were displayed as a hexdump. The message buffer is parsed to display the interface header, method name, and (in many cases) method arguments in a more human-readable way, allowing users to quickly see the message source, as well as which data are being passed between processes.

High-Speed Server Appliances​

For our server appliance customers, we’ve released a new generation of hardware based on the NVIDIA Grace platform. Our new servers run up to 2X faster than our prior generation. While they provide 120 VM cores of capacity, they can be flexibly licensed for either 60 or 120 cores. Contact Corellium Sales to learn more, and about how you can upgrade your existing Corellium server appliances.

Other Enhancements​

File Navigation

We’ve enhanced our Files tool to improve device filesystem navigation by adding a path entry field. This enables users to enter or paste in a directory or file path to a specific location for accessing files.

Resources Tab

For our cloud customers, the “Home” tab has been renamed to “Resources” with its content focused on improved support guides and resources, helping users get up to speed faster with Corellium.

Activity Logging

We’ve updated Activity logging within the Admin tab to include when projects and devices are created, cloned, and deleted.

SSH Keys

We’ve unified SSH key types for iOS and ADB into a single key type to reduce user confusion.

API

We’ve enhanced our documentation with additional sample responses and fixed errors in our response codes. We’ve also optimized our API to improve response times under heavy load.

Bug Fixes & UI Enhancements

Various underlying bugs have been resolved to improve stability and performance. Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

End-of-Life (EOL) & End-of-Support for Select Apple Devices & iOS Versions

Based on customer feedback from the Corellium 7.3 release, we’ve decided to modify our end-of-life and end-of-support policies slightly. Please see below for the changes as of version 7.4.

Cloud Customers

• iOS 10–14: These versions have been moved to End-of-Support (EOS). They are no longer actively supported but remain available on all compatible devices. These iOS versions will no longer be tested by our QA department and will not receive enhancements with new features.

• iPhone 6 & 6 Plus: These models continue to be at EOL due to the deprecation of iOS 10–14.

Onsite Customers

• iOS 10–14: These versions have entered End-of-Support (EOS). Future software updates will no longer support these operating systems by default, though devices can still be manually re-included with assistance from our support team.

• iPhone 6 & 6 Plus: Reaching EOS, these models will not appear in the IPSW Loader by default in future updates but can be included manually upon request. This change ensures that our services remain secure, efficient, and aligned with current technology standards.

Continued Support & Recommendations

Supported Devices

• iPhone 6s, 6s Plus, and SE: These devices will continue to receive full support as they are compatible with iOS 15. Users can rely on these models without service disruptions.

• Ongoing updates and support ensure optimal performance and security for these models.

Recommendations

• Upgrade: Consider updating your devices or operating systems to access the latest features, improved performance, and extended support.

• Transition Plan: Develop a strategy to transition away from EOL or EOS devices to avoid service disruptions.

• Contact Support: For onsite re-inclusion requests related to EOS, reach out to our customer support team for assistance.

• Updated usability for our on-premise users to gain parity with the 7.3.0 cloud release

• 18.4.0 beta1-rc2 (on-prem Premium Only customers)

Overview​

The Corellium 7.3.0 release expands platform capabilities with full support for Apple iPadOS 16–18 and the addition of iOS 18.3.2 to our Apple lineup. This update also introduces iOS Camera Passthrough and media file upload support, enhancing testing workflows. Additionally, Corellium MATRIX advances with compliance mapping, allowing security findings to be correlated with industry-standard frameworks for improved traceability. These enhancements further strengthen Corellium as a comprehensive platform for mobile app development, testing, and security research.

Updated Support for iPadOS, iOS and Device Models​

• New models (cloud customers)
  • iPhone 16e
  • iPad Mini 5
  • iPad Mini 7
• New Versions (cloud customers)
  • iPadOS 16.x
  • iPadOS 17.x
  • iPadOS 18.x
  • iOS 18.3.2

New Features​

1. New iPad models and iPadOS Support

   • New iPad Mini 5 and Mini 7 models run iPadOS 16.x, 17.x and 18.x.
   • Allows for the installation and testing of iPadOS specific mobile apps

2. iOS Camera

   • All iOS devices support Microphone.

   • Camera support is limited to newly created devices in the 7.3 release.

   • The following iOS device/version combinations are currently supported:

     • iPhone 8 running iOS 16.x
     • iPhone 8 Plus running iOS 16.x
     • iPhone SE (2020) running 16.x, 17.1.0, and 18.1
     • iPhone SE (2022) running 16.x, 17.1.0, and 18.1

   • On iOS, configure the camera in the VM to “Most Compatible” format: Settings → Camera → Formats → Camera Capture → Most Compatible. See our Camera Support for details.

MATRIX​

Compliance Mapping​

We have enhanced MATRIX by tagging each Check and Artifact with corresponding mobile security compliance standards. This provides greater clarity and traceability during security assessments.

Supported Standards Include:​

• OWASP MASTG: The Mobile Application Security Testing Guide defines best practices and test cases for mobile app security testing on iOS and Android.
• OWASP MASWE: The Mobile Application Security Weakness Enumeration lists common security and privacy weaknesses in mobile applications.
• CVE: Common Vulnerabilities and Exposures is a database of publicly known vulnerabilities.
• CWE: The Common Weakness Enumeration categorizes underlying weaknesses that can lead to vulnerabilities. MITRE maintains the CVE and CWE, sponsored by the U.S. DHS.

Split APK Support​

• MATRIX now supports Split APKs, Google Play’s method for reducing app size by dividing apps into smaller components. Previously, scans failed on Corellium devices with Split APK installations. This update enables full security testing for apps using this delivery method.

Other Enhancements​

End-of-Life (EOL) & End-of-Support for Select Apple Devices & iOS Versions​

Cloud Customers​

• iOS 10–14: These versions have reached End-of-Life (EOL) and are no longer accessible on our cloud platform. Users are encouraged to upgrade to newer iOS versions for continued access and improved security.

• iPhone 6 & 6 Plus: These devices have also reached EOL and are no longer supported due to the deprecation of iOS 10–14.

Onsite Customers​

• iOS 10–14: These versions have entered End-of-Support (EOS), meaning future software updates will no longer include support for these operating systems. However, devices can be manually re-included by contacting our support team.

• iPhone 6 & 6 Plus: These devices have also reached EOS and will be removed from the IPSW Loader by default in future updates. Manual inclusion is available upon request.

• This change ensures that our services remain secure, efficient, and aligned with current technology standards.

Continued Support & Recommendations​

Supported Devices​

• iPhone 6s, 6s Plus, and SE will continue to receive full support as they remain compatible with iOS 15. Users can rely on these devices without service disruptions.
• Ongoing updates and support will ensure optimal performance and security for these models.

Recommendations​

• Upgrade: Consider updating your devices or OS to access the latest features, improved performance, and extended support.
• Transition Plan: If impacted by EOL or EOS, develop a transition strategy to avoid service disruptions.
• Contact Support: For onsite re-inclusion requests related to EOS, reach out to our customer support team for assistance.

We appreciate your understanding as we implement these changes and thank you for your continued partnership.

Note: This statement is subject to change based on future updates in device compatibility or policy amendments. Always refer to our latest communications for the most up-to-date information.

Additional Updates​

Networking Mode Options for SA Clusters​

• System Administrators can now change the Network Mode directly from the Installer.

Bug Fixes & UI Enhancements​

• Various underlying bugs have been resolved to improve stability and performance.

• Minor UI enhancements provide a more intuitive and user-friendly experience.

Overview​

This release of Corellium introduces several significant updates, including enhanced security features, improved integration with external systems, support for all the latest iOS versions, and various bug fixes and UI enhancements.

Added Support for iOS up to 18.3.1​

• Corellium now supports the latest iOS versions, ensuring compatibility with the most recent updates.
• Users can analyze the latest iOS devices without compromising functionality or security features.

New Features​

1. Added SAML Support

   • Corellium now supports SAML (Security Assertion Markup Language) authentication, providing secure single sign-on capabilities.
   • Integrates seamlessly with Identity Providers like Okta, OneLogin, and Azure AD.
   • Enhances security by leveraging industry-standard protocols for user authentication.

2. Admin Interface: User Activity Logger - A new activity monitoring system has been integrated into the Admin interface. This enhancement provides administrators with detailed insights into user interactions across the platform.

   • Track and view user actions.
   • Improve security auditing and compliance reporting.
   • Identify potential issues or unusual behavior quickly.

3. LDAP Authentication Integration - We've implemented enterprise-grade LDAP authentication, enhancing security and streamlining user access management across the platform.

   • Seamlessly map your organization's existing LDAP groups to Corellium roles.
   • Maintain consistent access control policies across your infrastructure.
   • Simplify user permissions management through centralized RBAC.

4. VLAN Tagging for Network Isolation - We've introduced VLAN tagging capabilities at the project level, enabling enhanced network segmentation and isolation for on-premise deployments.

   • Configure VLAN tags at the project scope.
   • Maintain separate network domains for distinct workloads.
   • Seamlessly integrate with existing network infrastructure.
   • Available for select enterprise customers.

Contact your Account Representative for enablement. Network administrator configuration may be required.

MATRIX​

• New Check for Android Code Signing Artifacts

  • A new feature has been introduced to gather code signing artifacts from Android applications.
  • This addition adds in thorough security analysis by extracting relevant information for compliance and audit purposes.

Other Enhancements​

1. Enhanced Crash Report Analysis - We've significantly improved our crash reporting system by integrating disassembly information directly into crash reports, providing deeper insights into application behavior and failure points.

   • Direct access to disassembled code at crash locations.
   • Immediate visibility into instruction-level execution context.

2. Bug Fixes and Minor UI Enhancements

   • Various underlying bugs have been resolved to improve stability and performance.
   • Minor user interface tweaks have been implemented for a more intuitive and user-friendly experience.

We’re excited to announce the latest updates and improvements in Version 7.1.0!

This release introduces powerful new features, enhanced functionality, and critical bug fixes to ensure you have the best possible experience.

The 7.0.3 patch release for on-site appliances contains the following:

• Firmware services reliability improvements
• Fixed an Ubuntu 24 upgrade issue for hostnames that contain underscores

• Updated usability to gain parity with the 7.0 cloud release
• Improved on-site upgrade installation experience
• On-site appliance OS upgrade to Ubuntu 24 (Click here to download instructions)
• Logging improvements
• Known issue: Booting iPhone 16 when PAC is enabled is not supported

• Added support for the iPhone 16 family of hardware
• Added support for iOS 18.0.1 and 18.1

This patch release for on-site appliances improves the following:

• fwservice and fwupdater services are more reliabile and faster.
• Fixed a bug in the Create User API and UI workflows.
• CHARM Development Kits no longer throw errors when cloning certain snapshots.

We are excited to announce several important updates to AVH. These changes aim to streamline your experience, ensure better service, and enhance how you interact with the platform.

iOS 18 is now available​

We're excited to announce the support of iOS 18.0 build 22A3354!

Dynamic Consoles​

Added support for Dynamic Consoles, allowing you to select from multiple consoles on devices where available.

MATRIX​

We made a stack of iterative improvements to our MATRIX feature!

• Added support for downloading JSON to History page
• Added tooltips to report statuses
• Added pagination to improve UI
• 2 new Android checks
• 5 new iOS checks
• Improved check outputs
• Lots of bugfixes and improvements

Enhanced Plan Offerings​

We have enhanced our plan offerings to better align with our customers’ budgets, feature requirements, and environment needs. We now provide a diverse range of plan levels, ensuring that our customers can find options that meet both their financial and operational needs.

This version requires you to install Corellium 6.4.0 first.

iOS 18 Beta Support​

Customers with Premium licenses can now run both jailbroken and non-jailbroken iOS 18 beta firwares (build 22A5307).

This version requires you to install Corellium 6.4.0 first.

LDAP Authentication​

Corellium is happy to annoumce that we now support LDAP as an addition to our SSO offerings.

For more information about how to configure LDAP please see our documentation.

MATRIX Improvements​

We've been working hard on making MATRIX more powerful, robust, and interactive. Here are some things you can look forward to in this release.

This month's update includes two features - one that we have had enhanced in beta for a few months now, called MATRIX, and one that is new to our platform called Snapshot Sharing.

MATRIX​

If you've been playing with this feature, you may have seen it referred to in our application as MAST (Beta). Today, we're formally rolling out our name for this feature, MATRIX, which stands for Mobile Application Testing and Reporting Interface.

MATRIX now includes 8 new Android checks and 4 new iOS checks.

Today we're rolling out Corellium version 6.2.1 for on-premise and desktop appliances.

Android Live Snapshots​

Live snapshots capture the state of a virtual device's RAM and filesystem. Corellium can resume live snapshots in the same state as when they were suspended, including running apps. We're bringing Live Snapshots, a feature previously only available on iOS devices, to Android.

UI/UX Enhancements​

This months updates include some great UI/UX changes to our app to amp up your experience. We've revamped the way you navigate and interact with our platform whether you use a keyboard, screen reader, or just want a smoother, more user-friendly experience.

UI/UX Enhancements​

For this round of updates, we're taking into account the considerable feedback we've gathered from you, our customers. In response to this valuable feedback, we've made some focused improvements to our web interface to help you better understand the state of your devices and to provide more visibility around device hours and burst usage.

Virtualize iOS 17.4 Devices​

Premium On-Site and Desktop Appliance support has been extended to include up to iOS 17.4 Beta.

MATRIX (Beta) for Cloud​

We have released our automated mobile app security testing tool, known as MATRIX, to our Business Cloud customers. Available for both iOS and Android devices, MATRIX drastically reduces the effort, cost, and time required to perform professional-grade penetration testing.

MATRIX (Beta) Improvements​

This time around, we've introduced a set of automated bug fixes for MATRIX (Beta) to enhance your experience, exclusively made available to on-premises customers. These fixes include but are not limited to:

• Corrected an issue where the evidence would be missing in the report from a failed check
• Fixed API traffic routing

This release includes new firmware, Microsoft Entra SSO support, UI changes, and other improvements.

Virtualize iOS 17.2.1 Devices​

We have added support for iOS 17.1, 17.1.1, 17.1.2, 17.2, and 17.2.1. You can now create devices using the latest iOS firmware for all compatible devices.

Virtualize Android 14 Devices​

We have also added support for Android 14. You can now create devices using the latest Android firmware.

This release includes our MATRIX Beta; as well as new firmware, UI changes, and other improvements.

MATRIX (Beta)​

Introducing the beta of our new MATRIX solution for DevSecOps! You can use Corellium to test your mobile applications on a wide range of devices without the need to purchase and maintain physical devices.

Version 5.6.0 is now live. Find out what's new!

Introduced iOS 17.1 and iOS 17.1.1 Support​

We're excited to announce that cloud customers can now create iOS 17.1 and iOS 17.1.1 devices. Happy Virtualizing!

Corellium proudly presents iPhone 15 devices! iPhone 15, 15 Plus, 15 Pro and 15 Pro Max, along with iOS up to version 17.0.3

• Corellium is proud to announce iOS 17 support, up to 17.0.2
• Improved SSO beta support for Auth0, Okta, Azure AD B2C, and PingIdentity
• iOS microphone support
• Android fingerprint peripheral support
• Upgrade Frida on iOS to 16.1.3
• Bug fixes and enhancements
• We are aware of an intermittent kernel panic issue affecting iOS 16.x.

• Corellium is proud to announce iOS 17 support, up to 17.0.2
• Graviton 3 support
• Guided onboarding
• A new home screen
• iOS microphone support
• Android fingerprint peripheral support
• Upgrade Frida on iOS to 16.1.3
• Bug fixes and enhancements
• We are aware of an intermittent kernel panic issue affecting iOS 16.x.

• Official beta support for on-premises SSO with Auth0 (Okta)
• Improved iOS Beta support

iOS 17 Beta is now available for on-premises customers.

• Debug Accelerator
• Advanced Network Monitor
• Update the iOS version
• Restore a physical iOS backup to a Corellium device

• Debug Accelerator - Reduces the effect of network latency and makes debugging from Mac, Linux, and Windows laptops faster and more natural.
• Android Screen Rotation - Support for screen rotation on our virtual Android devices.
• Advanced Network Monitor - Capture all network traffic from our virtual devices in addition to HTTP(s), for both iOS and Android. (Enterprise and Premium Editions)
• Update iOS Version - You can now perform an in-place iOS update on your virtual devices for introspection and testing during OS updates. (Enterprise and Premium Editions)
• Restore iOS Backup - You can now restore backups from your physical iOS devices to our virtual iOS devices. (Enterprise and Premium Editions)
• Single Sign-On - Beta release of support for OpenID Connect via Auth0. (Standard, Enterprise, and Premium editions)
• iOS 16.5 Support

• A revamped billing system based on device hours
• A new design for our web interface

• Add iOS 16.4 and iOS 16.4.1 firmware support
• Add iOS 16.5 beta firmware support for Premium Edition customers
• Add a non-rooted Android option
• Improve Android GPS sensor operation
• Upgrade Frida on iOS to version 16.0.11
• Various UI/UX enhancements

• Released the Corellium Webplayer (learn more here)
• Added iOS 16.3 and iOS 16.3.1 support for cloud customers
• A new cloud-based experience for on-premises customers
• Users can now set device location to “my location”
• Users can now download the console log output
• Add the license type to the user's profile dropdown
• Miscellaneous bug fixes and improvements

In this minor release, we fixed a CoreTrace bug.

Corellium is ready to show the following updates, made available to our on-premises customers:

• Multi-node installer update
• Kernel upload enhancement
• UIUX improvements
• Various minor bug fixes

Corellium introduces support for iOS 16.3, available for on-premises customers.

• Various UI/UX enhancements
• Performance improvements
• Bug Fixes

In this on-premises release, Corellium is proud to present:

• iOS 16.2 enhancements
• Performance improvements
• UIUX updates and enhancements
• Fixed a PAC panic issue affecting the iPhone 14 and iPhone 14 Pro Max

Corellium is excited to release Version 4.0, which includes support for Webplayer (Enterprise customers only) and iOS 16.2.

Support for iOS 16.2 is now available for our on-premises customers.

Implemented a documentation fix.

Support for iOS 16.1 and Android 13 is now available on our cloud platform!

The highly anticipated releases of iOS 16.1, 16.2 Beta, and Android 13 are now supported.

This release fixes an issue with IOMMU passthrough on On-Site Deployments.

Corellium is proud to announce iPhone 14 and iPhone 14 Pro support, improvements to the device boot process, and performance improvements.

This release was removed.

Offered exclusively to customers with On-Site Deployments, 3.13.2 provides iOS 16 support, improvements to the device boot process, and performance improvements.

With the 3.13.1 release, we announce iOS 16 support for cloud customers as well as improvements to the device boot process.

The 3.13 release includes preparation for iOS 16 support, design enhancements to the user interface, and performance improvements.

Corellium introduces support for iOS 16 Beta 5. This release is available as a beta exclusively to customers with On-Site Deployments.

Corellium unveils various new changes to the user interface and user experience with version 3.12.1.

Corellium is excited to add support for the new iOS 16. This new release is available as a beta exclusively to customers with On-Site Deployments.

This release adds Quick Connect SSH tunneling, a Rotate button for iOS, XPC support for CoreTrace on iOS, and OpenGApps for Android 12.

Our latest release adds website improvements, an API update, bug fixes, and a new user profile page.

Corellium version 3.9.0 contains updated Frida support as well as bug fixes and improvements to the user experience.

For this release we have added support for iOS 15.4 and 15.4.1.

The Corellium team is excited to announce the release of many user experience improvements, simulate receiving SMS to iOS, frames of various Android devices, Android 12 upgrade, as well as bug fixes.

In this latest release, we've added iOS 15.3 and iOS 15.3.1, STUN for WebRTC to allow for functional displays in strict firewall environments, improved snapshot functionality, added a start timestamp to the instance object on the Corellium-API, and other various bug fixes.

We are excited to announce in this release that we've added Pop-Out Displays for Virtual Device Screens, and a bug fix for cloning Snapshots.

This release provides iBoot for iPhone 12, improved API instructions for on-premises customers, and bug fixes for custom kernel uploads & API internet access toggling.

In this release, we've added support for iPhone 13 and iOS peripherals, including Biometrics and Accelerometer. We also improved our error handling.

Our latest release brings support for iOS 14.8 and iOS 15, as well as support for GPS on iOS device.

This update only applies to the cloud.

• Enables GPU acceleration for all Android devices on Enterprise accounts
• Enables mixed Graviton clusters

This update adds support for iOS 14.7 and iOS 15. Since iOS 15 is still in beta, it's only supported for on-premises customers.

In this update, we're very excited to add support for Sensors and Camera for our virtual Android devices, as well as beta support for Android 12!

• Added the ability to export a pcap of the log from the Network - Monitor tool
• Fixed a bug that caused some apps to timeout on launch on iOS 14.5.1 with PAC enable

• Improve the load time of images in the Create Device modal
• Increase trial time from one hour to six hours
• Fix a Frida-related panic on iOS 14.5+ and enable integrated Frida tab on 14.5+
• Disable certificate pinning by default for applications on jailbroken iOS devices
• Automatically connect to the device display
• Support for KASLR

• Adds support for iOS 14.5
• Improves CoreTrace reporting on XNU and Linux
• Increases minimum password length for accounts
• Adds support for multiple connections to a project or instance via the same openvpn client configuration

This cloud-only release provides support for variable screen sizes in the API, as well as minor bug fixes.

• Support for variable screen sizes in the API
• Support for toggling GPU acceleration per domain
• Fixed a bug that caused Network Monitor to be displayed for non-jailbroken no-agent devices
• Fixed an issue with the API that allowed users to create projects without a name
• Fixed an issue that prevented re-subscribing after canceling a usage-based account
• Fixed a bug that caused Enterprise Team Leads to see an option to invite users and manage teams when this functionality was not available at this permission level

This release provides support for 14.5 betas and Network Monitor for iOS.

• Added support for 14.5 betas 1 and 2
• Added support for Network Monitor for iOS-based device models
• Fixed a bug that could cause errors in upgrading on-premises installations
• Fixed backwards compatibility with iOS 14.0 betas

This release provides on-premises customers with the new ability to load their own models to the hypervisor. It also adds support for copying and pasting data to iOS-based device models.

• Added support for loadable firmware models for on-premises customers
• Added Copy/Paste for iOS devices. Note that for both Android and iOS-based device models, copy/paste behavior is inconsistent across different web browsers. In particular, data is unable to be pasted into a VM in the Firefox browser, and data is unable to be copied out of a VM in the Safari browser.
• Fixed a bug in switching from monthly to usage-based subscriptions
• Fixed a bug that prevents resubscribing after cancelling a usage-based account
• Fixed a bug that could cause snapshots to becoming stuck in a Restoring state
• Fixed a bug causing incompatibility between A14 iPhone device models and Xcode
• Fixed a bug that caused graphical glitches in apps that use WKWebview
• Implemented missing ACM protocol extensions and messages for iOS-based device models
• Rebased the Ranchu Linux kernel branches

This update provides support for iOS 14.4 and adds Frida support for iOS-based devices.

• Added support for Frida console for iOS devices
• Added support for iOS 14.4
• Enabled PAC for iPhone 12
• Fixed an intermittent bug causing A14-based models to freeze during restore in Graviton environments
• Fixed an error causing IPSWs to fail to upload in Graviton environments
• Fixed an error causing iPhone XR and XS device models to panic when APRR was set

This update provided minor bug fixes for the cloud.

• Fixed an NVMe panic after pause or reboot from a READ timeout
• Fixed a bug that caused ffmpeg to cause unknown device error
• Fixed a bug that cause the Kill button in the app tab to occasionally not respond to a click
• Added a connection token to vstrm servers, telegfx, and crlm-stream
• Resolved an issue with a device that was stuck in the Deleting state

We're very excited to announce that this release brings Apple device models to Individual accounts. With this release, Individual accounts will also see new advanced settings, including the ability to upload custom kernels and ramdisks. In addition, all accounts will now be able to adjust the number of CPU cores and the amount of RAM assigned to generic Android devices.

This update brings Enterprise customers support for the Apple A14 devices, including iPhone 12, iPhone 12 mini, iPhone 12 Pro, and iPhone 12 Pro Max. It also implements encryption for AWS S3 backed volumes, and fixes some minor bugs in iOS 14 support.

With this update, we're very excited to now offer Usage-Based Billing for our cloud subscribers. Users can now subscribe to Individual or Enterprise Usage-Based accounts, where devices they create are charged for on an hourly basis. Please visit the Subscription page in your account to view additional details about subscribing to Usage-Based accounts.

In this release, a key highlight is that users are now allotted Stored Device slots, enabling users to store Off devices without occupying CPU cores. For each On device permitted on the user's account, up to 5 total devices can be stored. For example, a user with a 3-device Individual account will now have 15 "stored device" slots. Note that On devices count toward the total stored device count, so a user with a 3-device account could have 3 On devices and 12 Off devices.