A recently discovered iPhone hacking technique known as DarkSword has emerged as a significant threat, specifically targeting devices running iOS 18. This powerful tool has been utilized by Russian hackers, making it possible for them to take control of iPhones simply by having users visit infected websites. The discovery was made by researchers from Google, iVerify, and Lookout, who announced that DarkSword has been witnessed on sites used for espionage and cybercrime.
DarkSword poses a considerable risk to many iPhone users, as it can affect all iOS devices operating on the outdated iOS 18, which still accounts for nearly 25% of iPhones according to Apple. Rocky Cole, cofounder of iVerify, stated, “A vast number of iOS users could have all of their personal data stolen simply for visiting a popular website.” This highlights the urgent need for users to update their devices to protect their personal information.
The emergence of DarkSword follows closely on the heels of another robust hacking toolkit dubbed Coruna, which was reportedly used by a Russian state-sponsored group. Both DarkSword and Coruna have been embedded in legitimate Ukrainian websites to compromise users’ data. The exploration of both tools indicates a rise in sophisticated hacking techniques formerly reserved for targeted attacks but are now being used indiscriminately.
Details indicate that DarkSword exploits vulnerabilities in these devices without leaving persistent traces post-reboot, essentially stealing data within minutes of gaining access. This "smash-and-grab" method focuses on acquiring sensitive information such as passwords, photos, and data from various apps without installing rogue software.
Despite the inherent risks, many devices remain vulnerable due to the slow rate at which users adopt newer iOS versions. Apple has released security updates addressing vulnerabilities linked to both DarkSword and Coruna; users are encouraged to enable security features like Lockdown Mode and keep their devices updated to the latest software, which is crucial for maintaining security.
As cybercriminals become more brazen and willing to use these exploits for profit, experts warn about the implications for everyday users, not just high-profile targets like journalists and activists. Justin Albrecht from Lookout emphasized that this growing market for hacking tools, once reserved for espionage, now poses a clear threat to all iPhone users.
While the origins of DarkSword remain unclear, there is speculation that it may have been developed by a hacker broker who redistributes exploit techniques. Such advancements in hacking tools suggest a worrying trend towards the general availability of exploit techniques that can be utilized by less discreet operatives, potentially putting millions at risk.
For comprehensive safety, users should perform regular software updates by navigating to Settings > General > Software Update on their devices.
