The “DarkSword” assault, which might unfold malware to unpatched iPhones, is now concentrating on potential victims by phishing emails.
Electronic mail safety supplier Proofpoint warned of the risk after detecting the emails in prospects’ inboxes. They function a hyperlink that results in a malicious website internet hosting DarkSword, which abuses a variety of iOS software program vulnerabilities to remotely assault iPhones working iOS 18.4 to 18.7.
The phishing emails underscore the specter of DarkSword, an assault that was initially utilized by a handful of shadowy teams for cyberespionage and cybercrime. However final week, somebody leaked the assault on-line, making it simple for anybody to undertake and doubtlessly enhance upon.
Proofpoint suspects Russia’s Federal Safety Service is behind the phishing emails, which faux to return from the Atlantic Council, a US suppose tank, and invite the person to a “closed-door strategic dialogue” about Europe’s safety. Russian dissident Leonid Volkov reported receiving one of many phishing emails.
This Tweet is currently unavailable. It might be loading or has been removed.
On this case, the phishing emails are designed to focus on iPhone customers by way of cell browsers; DarkSword has contaminated iPhones that go to a malicious website by way of Safari.
“Whereas exercise from this [Russian] actor has traditionally been low quantity, we’ve just lately noticed a modest improve, with campaigns reaching into the handfuls of messages moderately than single digits,” Proofpoint says. “The concentrating on seems primarily aligned to worldwide organizations of curiosity, moderately than centered on any particular nation.”
Really useful by Our Editors
The hacking marketing campaign underscores why customers, particularly these on iOS 18.4 to 18.7, ought to replace their iPhones as quickly as attainable. Apple has gone out of its strategy to publish a help web page urging prospects to replace; it additionally launched patches for telephones that do not help iOS 26.
“We launched a software program replace for iOS 15 and iOS 16 on March 11, 2026, to increase safety to older units that can’t replace to the newest model of iOS,” the corporate added. “Units with iOS 13 or iOS 14 should replace to iOS 15 to obtain these protections and can obtain an extra alert to put in a Important Safety Replace within the subsequent few days.”
Get Our Greatest Tales!
Keep Secure With the Newest Safety Information and Updates
Join our SecurityWatch publication for our most essential privateness and safety tales delivered proper to your inbox.
Join our SecurityWatch publication for our most essential privateness and safety tales delivered proper to your inbox.
By clicking Signal Me Up, you affirm you might be 16+ and conform to our Phrases of Use and Privateness
Coverage.
Thanks for signing up!
Your subscription has been confirmed. Keep watch over your inbox!
About Our Professional
Michael Kan
Senior Reporter
Expertise
I have been a journalist for over 15 years. I bought my begin as a faculties and cities reporter in Kansas Metropolis and joined PCMag in 2017, the place I cowl satellite tv for pc web companies, cybersecurity, PC {hardware}, and extra. I am presently based mostly in San Francisco, however beforehand spent over 5 years in China, overlaying the nation’s know-how sector.
Since 2020, I’ve lined the launch and explosive development of SpaceX’s Starlink satellite tv for pc web service, writing 600+ tales on availability and have launches, but additionally the regulatory battles over the growth of satellite tv for pc constellations, fights with rival suppliers like AST SpaceMobile and Amazon, and the hassle to increase into satellite-based cell service. I’ve combed by FCC filings for the newest information and pushed to distant corners of California to check Starlink’s mobile service.
I additionally cowl cyber threats, from ransomware gangs to the emergence of AI-based malware. Earlier this yr, the FTC pressured Avast to pay shoppers $16.5 million for secretly harvesting and promoting their private info to third-party shoppers, as revealed in my joint investigation with Motherboard.
I additionally cowl the PC graphics card market. Pandemic-era shortages led me to camp out in entrance of a Greatest Purchase to get an RTX 3000. I am now following how President Trump’s tariffs will have an effect on the trade. I am at all times desirous to study extra, so please soar within the feedback with suggestions and ship me ideas.
Learn Full Bio
