Apple confirms an iOS 18 patch for the DarkSword exploit, even for users who skipped upgrading to iOS 26

Last month, a malware toolkit called DarkSword had Apple users holding their iPhones a little tighter. The exploit could be used to break into older iPhones and iPads running iOS 18.4 through 18.7 simply by visiting a website hosting malicious code. Even legitimate websites that had been breached could be affected. The exploit could steal messages, browser histories, location data, and cryptocurrency, then upload everything to an attacker-controlled server. Bad news all around.

Apple responded by rolling out updates to address the two known exploits: Coruna, which affects devices running iOS 13 through iOS 17.2.1, and DarkSword, which targets iPhones running iOS 18.4 through 18.7.

There was a catch, though. Apple only patched iOS 18 for devices unable to run iOS 26. This left anyone who could upgrade but chose not to completely exposed. That is how Apple typically operates. If you are running an older version of iOS on a device that can be updated, Apple will withhold security patches until you make the jump to the latest version.

2

Now Apple is changing its tune. The company confirmed to Wired that it will release an updated iOS 18 with the same DarkSword protections found in iOS 26. For users already on the latest OS, this change makes no difference. For those who aren't, and there are plenty, it means staying protected without being forced onto iOS 26.

The move doesn't align with Apple's usual security philosophy, but the company wasn't in a position to force users to choose between updating their OS and having their data stolen. The DarkSword toolkit was posted to GitHub last week, allowing anyone to target devices still running older versions of iOS. The tools have also been seen in certain attacks targeting users in China, Malaysia, Turkey, Saudi Arabia, and Ukraine.

That said, iPhone and iPad users with automatic software updates enabled should receive the new security patch automatically.