Home / Technology / iPhone Hack 'DarkSword' Leaves Quarter of Users Exposed
iPhone Hack 'DarkSword' Leaves Quarter of Users Exposed
19 Mar
Summary
- A fileless hack called DarkSword targets iOS 18 versions.
- It steals data including crypto wallets without leaving traces.
- Apple patched the exploits in iOS 26, but many users remain vulnerable.
A newly detailed hacking technique, dubbed "DarkSword," presents a considerable risk to a significant portion of iPhone users, potentially affecting close to 25 percent of devices. This sophisticated, fileless exploit specifically targets several versions of iOS 18. It operates by embedding a malicious iframe in web pages, enabling it to gain access to sensitive information like passwords and cryptocurrency wallets.
Unlike traditional spyware, DarkSword works by hijacking legitimate operating system processes to steal data and then meticulously erases any evidence of its presence, making detection extremely difficult. The hack has reportedly been used in various countries, including Ukraine, Saudi Arabia, Malaysia, Turkey, and Russia. Its origins are potentially linked to a toolkit named Coruna, which may have been developed for government entities.
Apple addressed the exploits used by DarkSword and Coruna by patching them in recent updates to iOS 26, the software released in 2025. However, a considerable number of iPhone users, estimated at around 24 percent based on developer usage statistics, are still running older iOS 18 versions (specifically between iOS 18.4 and iOS 18.6.2). This leaves a substantial user base vulnerable to this stealthy attack, highlighting the critical importance of timely software updates for device security.
