APPLE has expanded the availability of iOS 18.7.7 and iPadOS 18.7.7 to more devices to protect users from the DarkSword exploit kit, according to Infosecurity Magazine. The update allows devices still running iOS 18 to receive security patches without upgrading to the latest operating system, and Apple broadened access on 1 April to help more users receive protections against web-based attacks linked to DarkSword.
The exploit targets devices on iOS 18.4 to 18.7 and can deploy malware when a user visits a compromised website in a watering hole attack. Eligible devices include iPhone XR through iPhone 16 models, iPhone SE (2nd and 3rd generation), multiple iPad mini, iPad Air and iPad Pro models, and iPad (7th generation), with automatic updates applying the patch or users able to update to the patched iOS 18 or upgrade to iOS 26.
Security researchers say the DarkSword kit has been used in attacks since July 2025, with six vulnerabilities and links to several threat actors, deploying data-stealing tools such as GhostBlade, GhostKnife and GhostSaber.