If your iPhone is still running an old version of iOS, you’ll want to read this.
Apple has responded to reports of DarkSword spyware targeting iPhones via a web-based attack. Here’s what iPhone users should know.
Numerous reports, including Mashable’s own coverage, were published about a new hacker tool called DarkSword being used to target iPhones. Apple has shared some important information regarding the threat and how it’s being addressed. According to Apple, the underlying iOS vulnerabilities exploited by the spyware were patched last year. An emergency software update for iOS 15 and iOS 16 was pushed out on March 11 for older devices not able to update to newer versions. Apple says users running iOS 15 through iOS 26 are protected from DarkSword spyware. However, those on iOS 13 or iOS 14 need to update to iOS 15 to receive the same protections, with alerts for Critical Security Update coming soon.
Security researchers confirmed that DarkSword and other exploits don’t work on devices with Appleās optional Lockdown Mode protection enabled. iPhone 17 users were protected by Memory Integrity Enforcement. Google, alongside cybersecurity firms Lookout and iVerify, published detailed reports about DarkSword, deployed by bad actors associated with a notorious hacking group. DarkSword does not require downloading malware; it’s activated by visiting a compromised site. Apple Safe Browsing in Safari blocks known malicious URLs identified by Google.
Apple advises using two-factor authentication, avoiding unknown links or attachments, and keeping devices’ software up-to-date. More information about protections from web-based attacks can be found in a post on Apple’s website.