Researchers from Google, mobile security firm iVerify, and cybersecurity company Lookout have uncovered an attack kit targeting iOS devices, dubbed DarkSword, which is hidden on multiple legitimate Ukrainian websites. When an iPhone user visits one of these sites, malicious code executes silently, gaining the attacker control over the device without the user needing to take any action or receive any notification. This breach allows access to sensitive information, including passwords, messages from platforms such as iMessage, WhatsApp, and Telegram, browsing history, health data, notes, calendar entries, and cryptocurrency wallets.

The potential reach of the DarkSword attack is extensive, as experts estimate that between 220 to 270 million iPhones are still running vulnerable versions of iOS, specifically versions 18.4 to 18.6.2, which the exploit targets. This constitutes approximately 14% of all iPhones currently in use worldwide. While Apple has patched the vulnerability in the newer iOS version 26.3, users who have not updated remain at serious risk of attack, highlighting the ongoing challenge of keeping devices secure, particularly with zero-day exploits.

This incident underscores the importance of cybersecurity awareness and the need for timely software updates to protect against emerging threats. As the number of devices and reliance on technology increases, so does the sophistication of cyber threats. The discovery of DarkSword serves as a critical reminder for users to remain vigilant, regularly update their devices, and be cautious when visiting unfamiliar websites, even if they appear legitimate.