Thomas Trutschel / Contributor/ Photothek by way of Getty Pictures
Comply with ZDNET: Add us as a most popular supply on Google.
- Apple has launched a safety patch for iPhones nonetheless operating iOS 18.
- The patch protects them towards the harmful DarkSword exploit.
- Set up the patch ASAP, however think about updating to iOS 26.
Getting the latest safety patches to your iPhone normally means it’s a must to be operating the newest taste of iOS; these days, that is iOS 26. In response to critical threats, Apple generally provides patches for older variations of iOS on gadgets that may’t be up to date.
However when you can replace your iPhone to the newest OS and easily select to not, you are usually out of luck. Now, a brand new and harmful exploit has prompted Apple to backtrack on that coverage.
Additionally: I’ve tracked Apple for almost 50 years: How a storage insurgent grew to become a multitrillion-dollar empire
Rolled out right this moment is a safety patch designed to guard iPhones nonetheless operating iOS 18 towards the DarkSword exploit. As documented by Google and by safety corporations iVerify and Lookout on March 18, DarkSword is a very vicious kind of spy ware exploit that may infect susceptible iPhones with malware; all it’s a must to do is go to a malicious or compromised web site.
DarkSword exploit leaves no traces
Attackers can then management your contaminated gadget, permitting them to spy in your actions, steal private recordsdata, seize your textual content messages, seize saved passwords, and infiltrate cryptocurrency accounts. After the exploit has accomplished its mission, all traces of the an infection are eliminated so that you simply would not even know you have been victimized, in line with Malwarebytes.
“Two most important elements make the DarkSword exploit chain significantly harmful: first, it’s extremely dependable; second, its supply code has been leaked, making it simply adaptable by a number of risk actors,” Vincenzo Iozzo, CEO and co-founder of id safety agency SlashID, informed ZDNET. “Menace intelligence from Google and different distributors signifies that this adaptation is already occurring amongst risk actors. Notably, DarkSword primarily targets iOS 18.”
Energetic since November 2025, DarkSword has been weaponized by a number of cybercriminal and state-backed teams. Thus far, a lot of the assaults have focused international locations resembling Saudi Arabia, Turkey, Malaysia, and Ukraine. However the exploit was not too long ago revealed on GitHub, turning it right into a malicious instrument that might be utilized by anybody, wherever.
Additionally: How one can allow Personal DNS mode in your iPhone – and why it is vital to take action ASAP
DarkSword may also have an effect on iPads with out the newest safety replace. Initially, solely sure variations of iOS and iPadOS have been patched to guard them towards DarkSword. That lined not solely iOS 26.3 and iPadOS 26.3 but additionally prolonged to prior variations, resembling iOS 15.8.7, iPadOS 15.8.7, iOS 17.6.15, iPadOS 16.7.15, and iOS 18.7.7, and iPadOS 18.7.7.
Nonetheless, the patches for older variations are usually designed for gadgets unable to replace to iOS 26. The patch rolled out right this moment marks a distinct spin for Apple. Historically, the corporate has at all times suggested customers to replace to the latest OS to get the newest safety patches. However right this moment’s rollout is geared toward iPhone homeowners who can replace to iOS 26 however have chosen to stay with iOS 18.
“The mix of its reliability and accessibility is probably going why Apple determined to backport the patch,” Iozzo defined. “Moreover, whereas customers traditionally transition to the newest iOS model rapidly, presently solely 50%-66% of the iOS inhabitants is on iOS 26. This leaves a good portion of the shopper base susceptible.”
Why the resistance to replace? Some individuals do not just like the Liquid Glass impact launched with iOS 26, although Apple has steadily added methods to regulate it. Others might fear that the replace will change acquainted issues or power them to be taught new methods to make use of their telephone.
How one can get the replace
If you’re nonetheless operating iOS 18 or iPadOS 18, it is best to seize the newest replace ASAP. For this, head to Settings, choose Basic, after which select Software program Replace. Enable the newest replace to obtain and set up. The brand new variations are iOS 18.7.7 and iPadOS 18.7.7, however with a construct variety of 22H340. To keep away from having to manually obtain such updates sooner or later, choose and activate the choice for Automated Updates on the Software program Replace display.
Additionally: iOS 26.4 brings significant upgrades to your iPhone – together with a long-awaited keyboard repair
Lastly, think about updating to iOS 26 when you can. Although Apple might have saved your bacon this time, that will not at all times be the case. Sure, updating to a brand new OS may be difficult. However with new, extra harmful types of malware popping up, operating the newest model of iOS remains to be your finest guess for staying protected.
