Recently, the emergence of a malware kit known as DarkSword has raised alarms regarding the security of iPhone users. This malicious software enables hackers to easily extract sensitive information, including passwords, emails, and cryptocurrency wallet details, simply by visiting a compromised website. This vulnerability poses a significant risk to users who may unknowingly expose themselves to threats.
According to the Google Threat Intelligence Group (GTIG), DarkSword is being utilized by various commercial surveillance vendors and potentially state-sponsored actors, primarily targeting individuals in regions such as Saudi Arabia, Turkey, Malaysia, and Ukraine. The malware's recent leak onto the internet has made it more accessible, raising concerns that less sophisticated hackers may now exploit it against everyday users.
Widespread Vulnerability Among iPhones
A major concern surrounding DarkSword is its potential reach; many iPhones may be at risk. GTIG reports that all iPhones operating on iOS 26 prior to version 26.3 and those on iOS 18 before version 18.7.3 are susceptible. While users who consistently update their devices are generally safe, many do not keep their iPhones current, leaving them vulnerable to this malware.
Some users have opted to avoid Apple's latest iOS 26 update due to dissatisfaction with features such as Liquid Glass or concerns over performance. Apple's security policy typically restricts updates to devices running older iOS versions, leaving many without critical security patches unless they upgrade to the latest system.
Apple's Response: Universal Security Update
In a proactive measure, Apple has announced it will release a security patch for all iPhones running iOS 18, regardless of their ability to upgrade to iOS 26. This decision underscores the seriousness of the DarkSword threat and highlights Apple's commitment to ensuring user safety, even for those who choose not to migrate to the latest operating system.
This marks the second instance within a month where Apple has implemented such a broad security initiative; earlier, patches were issued for older devices to combat the "Coruna" exploit kit. Users can expect the update to be available around 10 a.m. PT (1 p.m. ET). Those with auto-updates enabled will receive it automatically, while others can manually check for updates under Settings > General > Software Updates.
