APPLE has patched the DarkSword vulnerabilities for iOS 18 across all affected customers, even those not updated to iOS 26, following a period when some users would otherwise have been left exposed. The patch was backported and extended to stubborn or unlucky iOS 18 users on 1 April, after DarkSword leaked to GitHub on 22 March. Apple had previously fixed DarkSword on pre-iOS 18 devices on 24 March, but the patching challenge for those who could upgrade to the latest OS persisted for a time.
Justin Albrecht, principal researcher at Lookout, praises the move, noting that Apple has taken unprecedented steps on iOS to counter DarkSword and Coruna, including backported patches and threat guidance published for web-based attacks, according to Lookout. The DarkSword circumstances have underscored how quickly exploit kits for iOS can spread once disclosed, and how patch management decisions influence enterprise risk.
Cole from iVerify argues the situation highlights gaps between public disclosure, GitHub availability, and timely patches, a dynamic that could shape future patching strategies. DarkSword was described as highly pernicious for not rooting the device, but instead escalating privileges, complicating detection, and expanding the threat surface for iOS 18 users.