Google Issues Urgent Warning to iOS Users: Update Now to Avoid ‘Darksword’ Malware
A newly identified iPhone malware, dubbed Darksword, has emerged as a significant threat to users operating on specific iOS versions released in 2025. This sophisticated exploit has been actively utilized in multiple campaigns, targeting a vast number of iPhones that have not been updated to the latest software.
Understanding the Threat
Darksword operates by infiltrating compromised websites. When users visit these sites, the malware silently installs itself on their devices without any noticeable signs. Once embedded, it grants attackers unauthorized access to sensitive data, including personal information and cryptocurrency wallets. This discovery follows closely on the heels of another spyware, Coruna, indicating a troubling trend of advanced iPhone attacks becoming more frequent.
Scope of the Vulnerability
The malware specifically targets iPhones running iOS versions 18.4 to 18.6.2, which Apple released between March and August 2025. Despite these versions being relatively recent, many users have delayed updating their devices, leaving them susceptible. Estimates suggest that between 220 million to 270 million iPhones worldwide are still operating on these vulnerable versions, highlighting the extensive reach of this threat.
Global Impact
Attackers have strategically placed Darksword on numerous websites, predominantly those associated with Ukraine. Visitors to these sites unknowingly become victims of the malware. Further investigations by Google have revealed that various groups, including commercial vendors and entities suspected of state affiliations, have deployed Darksword in campaigns across countries such as Saudi Arabia, Turkey, Malaysia, and Ukraine.
Expert Insights
Justin Albrecht, principal researcher at Lookout, emphasized the gravity of the situation, stating, There’s now a verified pipeline of recent exploits that have ended up in the hands of potentially criminal entities with a financial focus. Rocky Cole, COO of iVerify, added, They’re using them in mass attacks with poor operational security, that says a lot about how much they value these tools.
Apple’s Response
In light of these developments, Apple has taken proactive measures. The company confirmed that the vulnerabilities exploited by Darksword have been addressed in recent updates. Additionally, Apple has blocked the malicious domains through Safari’s Safe Browsing feature. An Apple spokesperson emphasized the importance of regular updates, stating, Keeping software up to date remains the single most important thing users can do to maintain the high security of their Apple devices.
The Importance of Regular Updates
This incident underscores the critical need for users to keep their devices updated. Delaying software updates can expose devices to known vulnerabilities, making them prime targets for malicious entities. Regular updates not only introduce new features but, more importantly, patch security flaws that could be exploited.
Steps to Protect Your Device
1. Check Your iOS Version: Navigate to Settings > General > About to determine your current iOS version.
2. Update Immediately: If you’re running iOS 18.4 to 18.6.2, it’s imperative to update to the latest version. Go to Settings > General > Software Update and follow the prompts.
3. Enable Automatic Updates: To ensure you receive future updates promptly, enable automatic updates by going to Settings > General > Software Update > Automatic Updates.
4. Be Cautious Online: Avoid visiting unfamiliar websites or clicking on suspicious links, as these can be potential vectors for malware.
5. Regular Backups: Regularly back up your device to iCloud or your computer to safeguard your data in case of unforeseen issues.
Conclusion
The emergence of Darksword serves as a stark reminder of the evolving threats in the digital landscape. While technology companies like Apple work diligently to address vulnerabilities, the onus also lies on users to take proactive steps in safeguarding their devices. Regular software updates, cautious online behavior, and staying informed are pivotal in ensuring the security of personal data in an increasingly connected world.
