Apple has pushed a security update to older iPhones and iPads that prevents the disclosure of a set of powerful hacking tools that can steal data from personal devices.
The tech giant announced Wednesday that it has released iOS 18.7.7 and iPadOS 18.7.7 to enable a wider range of devices to “receive critical security protections from a web attack called DarkSword.”
DarkSword is a hacking toolkit that users can use to compromise Apple devices running iOS 18.4-18.7 simply by visiting a website that hosts malicious code, such as a legitimate website that has itself been compromised. The exploit steals users’ device data, including messages, browser history, location data, and cryptocurrencies, and uploads that data to a server hosted by the hacker.
This tool has already been seen in specific attacks targeting users in China, Malaysia, Turkey, Saudi Arabia, and Ukraine. But now that the tools are published online, security researchers warn that anyone can use these hacking tools to target people running older versions of Apple’s mobile software.
Apple announced a few weeks ago that users running its latest software, iOS 26, were protected. The company also released a new update for iOS 18 users with iPhones and iPads that can’t run iOS 26 software.
But with Wednesday’s update, Apple provided a DarkSword fix to millions of users with unpatched devices who could update to iOS 26 but chose not to. Some users have chosen not to update to avoid the software’s new “liquid glass” interface, which has caused user dissatisfaction.
Wired reported earlier Wednesday that Apple is preparing to release an update.
Apple customers who have automatic software updates turned on should receive the new software. Apple said Lockdown Mode, an optional security protection, also protects against DarkSword attacks. The company told TechCrunch last week that it is not aware of any successful government spyware attacks on Apple devices running in lockdown mode.
Source link
