BotBeat
...
← Back

> ▌

AppleApple
POLICY & REGULATIONApple2026-04-01

Apple Releases Emergency iOS 18.7.7 Security Patch to Counter DarkSword Exploit

Key Takeaways

  • ▸Apple released iOS 18.7.7 to patch the DarkSword vulnerability, which enables remote iPhone takeover via malicious websites
  • ▸DarkSword exploit is actively being used by threat actors targeting multiple countries and is publicly available on GitHub
  • ▸Apple's decision to backport security fixes to older iOS versions is unusual and signals the severity of the threat
Sources:
Hacker Newshttps://www.macrumors.com/2026/04/01/apple-ios-18-darksword-security-update/↗
Hacker Newshttps://support.apple.com/en-us/126793↗

Summary

Apple has released iOS 18.7.7 and iPadOS 18.7.7 security updates to address the DarkSword exploit, a critical vulnerability that allows attackers to take over iPhones when users visit websites containing malicious code. The update is being rolled out to iPhone XS, XR, and other compatible devices, marking an unusual move for Apple as the company typically uses security fixes to incentivize upgrades to the latest OS version. DarkSword has already been weaponized by hacker groups targeting users in Malaysia, Saudi Arabia, Turkey, and Ukraine, and the exploit kit's public availability on GitHub has amplified the security threat.

While devices running iOS 26 already have built-in protection against DarkSword, Apple is providing the patch to iOS 18 users who have opted not to upgrade, recognizing the severity of the vulnerability. The company continues to encourage users on supported devices to upgrade to iOS 26 for enhanced overall protection. This departure from Apple's typical security strategy underscores the critical nature of the threat posed by the widely-available exploit.

  • iOS 26 devices already have DarkSword protection, but Apple is extending patches to iOS 18 holdouts

Editorial Opinion

Apple's unprecedented decision to patch iOS 18 reflects the severity and reach of the DarkSword exploit—a rare acknowledgment that security updates are more critical than upgrade momentum in certain circumstances. The public availability of the exploit kit on GitHub has fundamentally shifted the threat landscape, making it essential for Apple to protect legacy device users. However, this move also highlights the ongoing security challenges of maintaining multiple OS versions and the need for users to adopt a more aggressive update cadence for protection against emerging threats.

CybersecurityAI Safety & AlignmentPrivacy & Data

More from Apple

AppleApple
RESEARCH

Researchers Discover Six Vulnerabilities in Apple AirDrop and Google/Samsung Quick Share Protocols

2026-07-04
AppleApple
RESEARCH

Apple 'Hide My Email' Vulnerability Exposes Users' Real Email Addresses After Year of Inaction

2026-07-03
AppleApple
PRODUCT LAUNCH

Apple's fm CLI: Powerful AI Scripting with Significant Restrictions

2026-07-03

Comments

Suggested

LLM Agent EcosystemLLM Agent Ecosystem
RESEARCH

Researchers Expose Critical Payload-Less Attack on LLM Agent Supply Chains

2026-07-04
OpenAIOpenAI
INDUSTRY REPORT

Investigation Uncovers AI-Generated Deepfakes in Lily Jay Foundation Charity Fraud

2026-07-04
AppleApple
RESEARCH

Researchers Discover Six Vulnerabilities in Apple AirDrop and Google/Samsung Quick Share Protocols

2026-07-04
← Back to news
© 2026 BotBeat
AboutPrivacy PolicyTerms of ServiceContact Us