Apple has pushed a security update to older iPhones and iPads that protects against a set of powerful leaked hacking tools capable of stealing data from a person’s device.
The tech giant said Wednesday that iOS 18.7.7 and iPadOS 18.7.7 released to allow a wider range of devices to “receive significant security protections from web attacks called DarkSword.”
DarkSword is a hacking toolkit that can be used to break into Apple devices running iOS 18.4 to 18.7 simply by a user visiting a website that hosts the malicious code, such as legitimate websites that have been hacked. The exploits steal a person’s device data, including messages, browser history, location data, and cryptocurrency, and upload the data to a server hosted by the hackers.
The tools have already been seen in some attacks targeting users in China, Malaysia, Turkey, Saudi Arabia and Ukraine. But now that the tools have been published online, security researchers are warning that anyone can use these hacking tools to target people using older versions of Apple’s mobile software.
Apple says users running its latest software, iOS 26, were protected weeks ago. The company also released a new update for iOS 18 users with iPhones and iPads that cannot run iOS 26 software.
But with Wednesday’s update, Apple has now provided DarkSword fixes for the millions of users with unpatched devices that could update to iOS 26 but chose not to update. Some users chose not to update to avoid the software’s new “liquid glass” interface that has caused user complaints.
Wired reported earlier Wednesday that Apple is preparing to do so release the update.
Apple customers who have automatic software updates turned on should receive the new software. Apple said its optional security feature, Lockdown Mode, also protects against DarkSword attacks. The company told TechCrunch last week that it is not aware of any successful government spyware attacks against an Apple device running Lockdown Mode.
