SQ Magazine

Smarter Insights for a Fast-Moving Digital World

Subscribe To Our Newsletter

Outdated iPhones Vulnerable to New DarkSword Attack

Updated on:
Sofia Ramirez
Written By
Sofia Ramirez
Sofia Ramirez
Senior Tech Writer
Sofia Ramirez
Sofia Ramirez is a technology and cybersecurity writer at SQ Magazine. With a keen eye on emerging threats and innovations, she helps reader...
LATEST POSTS:
Amazon Eyes Smartphone Return With Alexa AI Device
New Research Shows How AI Is Changing Writing Habits
Outdated iPhones Vulnerable to New DarkSword Attack
Robert A. Lee
Reviewed By
Robert A. Lee
Robert A. Lee
Senior Editor
Robert A. Lee
Robert A. Lee is a journalist at SQ Magazine who unpacks the fast-moving worlds of gaming and internet trends. He tracks everything from maj...
LATEST POSTS:
WhatsApp to Roll Out Username Based System in 2026
Music Streaming Statistics 2026: Key Numbers Revealed Now
Online Shopping Statistics 2026: Growth Facts
As Featured In
BluehostActive CampaignDesignrushSeeking AlphaResearch Com

Apple is warning users that older iPhones running outdated software are at risk from powerful web based exploit kits like DarkSword and Coruna.

Quick Summary – TLDR:

  • DarkSword and Coruna exploits are targeting outdated iOS devices through malicious websites.
  • Hundreds of millions of iPhones may be vulnerable if not updated.
  • Attackers can steal sensitive data including messages, passwords, and photos.
  • Apple has released security updates and urges users to update immediately.

What Happened?

Apple and security researchers have identified multiple exploit chains, including DarkSword and Coruna, that target older iOS versions through compromised websites. These attacks can silently infect devices and steal sensitive data if users are running outdated software.

Exploit Kits Move From Targeted to Mass Attacks

For years, iPhone hacking tools were mostly used in highly targeted espionage campaigns. That is now changing. Security researchers from Google, iVerify, and Lookout have found that tools like DarkSword are being deployed on a much larger scale.

These exploits are now embedded in infected or compromised websites, turning everyday browsing into a potential risk. Simply visiting a malicious page can trigger an attack without any user interaction.

Researchers say this marks a major shift. What was once limited to state sponsored operations is now becoming widely available.

  • Multiple threat actors are now using the same tools.
  • Exploits are spreading across regions including Saudi Arabia, Turkey, Malaysia, and Ukraine.
  • Tools are being reused and shared, making attacks easier to launch.

How DarkSword Works?

DarkSword operates by chaining together multiple vulnerabilities in iOS to gain deep access to a device. Once triggered, it can achieve kernel-level compromise, giving attackers extensive control.

The exploit works in stages:

  • Delivered through compromised websites.
  • Exploits multiple system flaws in sequence.
  • Deploys payloads such as GHOSTBLADE, GHOSTKNIFE, and GHOSTSABER.

Unlike traditional spyware, DarkSword uses a fileless approach. It hijacks legitimate system processes instead of installing persistent malware. This makes it harder to detect and leaves fewer traces.

It also works quickly. Researchers describe it as a smash and grab attack, stealing data within minutes before disappearing after a reboot.

The data targeted includes:

  • Passwords and photos.
  • Messages from iMessage, WhatsApp, and Telegram.
  • Browser history, notes, and calendar data.
  • Even sensitive data from health and crypto wallets.
Newsletter
Subscribe To Our Newsletter!

Be the first to get exclusive offers and the latest news.

Why Older iPhones Are Most at Risk?

The attacks mainly affect devices running older iOS versions, including iOS 13 through iOS 18. Despite newer releases being available, a significant number of users have not updated their devices.

According to researchers, close to a quarter of iPhones are still running older versions like iOS 18, leaving hundreds of millions of users exposed.

Apple confirmed that devices running iOS 15 through iOS 26 with the latest updates are protected. However, users on outdated versions remain vulnerable.

Apple said:

Keeping your software up to date is the single most important thing you can do to maintain the security of your Apple products, and devices with updated software were not at risk from these reported attacks.

Apple

Apple’s Response and What Users Should Do

Apple has released multiple security updates to address the vulnerabilities exploited by DarkSword and Coruna. These updates fix issues in key components like WebKit and the kernel.

The company recommends:

  • Update to iOS 15.8.7 or iOS 16.7.15 for older devices.
  • Upgrade to the latest iOS version if possible.
  • Enable Lockdown Mode for added protection.
  • Avoid clicking unknown links or visiting suspicious websites.

Apple also noted that Safari includes built in protections that block known malicious domains.

Security experts warn that these tools are becoming more accessible. Some exploit code has even been found openly available, making it easier for less sophisticated attackers to reuse.

Growing Market for iPhone Exploits

Researchers believe the rise of tools like DarkSword signals a growing underground market for mobile exploits. These tools are no longer limited to elite groups.

The availability of such exploits suggests:

  • A commercial market where hacking tools are bought and sold.
  • Increased risk of cybercriminal use beyond espionage.
  • Faster spread and adaptation of attack techniques.

Experts warn that this trend could make large scale mobile attacks more common in the future.

SQ Magazine Takeaway

I think this is a serious turning point for iPhone security. What used to be rare and targeted attacks are now becoming widespread and almost routine. If someone is still using an outdated iPhone, they are basically leaving the door open for attackers. The biggest takeaway is simple but important, updating your device is no longer optional, it is essential.

Add SQ Magazine as a Preferred Source on Google for updates! Follow on Google News

References

  • Apple iOS Support Notification
    • Sofia Ramirez

    Sofia Ramirez

    Senior Tech Writer

    Sofia Ramirez is a technology and cybersecurity writer at SQ Magazine. With a keen eye on emerging threats and innovations, she helps readers stay informed and secure in today’s fast-changing tech landscape. Passionate about making cybersecurity accessible, Sofia blends research-driven analysis with straightforward explanations; so whether you’re a tech professional or a curious reader, her work ensures you’re always one step ahead in the digital world.

    Disclaimer: The content published on SQ Magazine is for informational and educational purposes only. Please verify details independently before making any important decisions based on our content.

    Related Posts

    Amazon Eyes Smartphone Return With Alexa AI Device
    Technology

    Amazon Eyes Smartphone Return With Alexa AI Device
    WhatsApp to Roll Out Username Based System in 2026
    Internet

    WhatsApp to Roll Out Username Based System in 2026
    Gemini May Soon Get Native Mac App With Desktop Intelligence
    Artificial Intelligence

    Gemini May Soon Get Native Mac App With Desktop Intelligence

    Reader Interactions

    Leave a Comment

    Company
    Discover
    Categories
    Internet
    Gaming
    Technology
    Artificial Intelligence
    Cybersecurity
    Categories
    Internet
    Gaming
    Technology
    Artificial Intelligence
    Cybersecurity
    Newsletter

    Subscribe To Our Newsletter!

    Be the first to get exclusive offers and the latest news.

    Newsletter

    Subscribe To Our Newsletter!

    Be the first to get exclusive offers and the latest news.