Two iPhone Exploit Kits Mean You Should Update iOS Now

ByMike Moffit

The discovery of two sophisticated iPhone exploit kits—DarkSword and Coruna—within weeks of each other signals a troubling shift. Unlike previous spyware attacks that targeted high-profile users, these exploit kits have been deployed via compromised legitimate websites, so anyone who visits an infected site could fall victim, with no additional clicks or downloads required. This suggests that exploit brokers are now selling tools to multiple buyers, including financially motivated hacking organizations.

Making matters worse, the complete DarkSword exploit code was published to GitHub, making it easy for any hacker to deploy. Security researchers warn that the exploits “will work out of the box” with no iOS expertise required—anyone could copy and paste the code and have it running on a server within hours.

Because it ultimately operates with elevated system privileges, DarkSword can silently harvest alarming amounts of data from vulnerable iPhones, including passwords stored in the keychain, photos, call logs, contacts, browsing history, chat message history, and more. It takes a smash-and-grab approach: collecting and exfiltrating data quickly, then disengaging. Coruna is more targeted and persistent, focusing on stealing cryptocurrency wallet credentials and scanning notes for financial information.

Protection Is Simple

Happily, it’s easy to protect yourself against these and future vulnerabilities: keep your devices up to date. We’ve been beating that drum for years, but DarkSword and Coruna are sufficiently worrying that Apple published a dedicated support page urging users to update, saying: “Keeping your software up to date is the single most important thing you can do to maintain the security of your Apple products.”

If your iPhone is running the latest version of iOS it supports, you’re already protected. But if you’ve been putting off updates—or are still running an earlier version of iOS 18 to avoid iOS 26’s Liquid Glass interface redesign—your iPhone may be vulnerable. Happily, Apple has taken the unprecedented step of releasing an update to an older operating system—iOS 18.7.7—to protect users who don’t wish to upgrade to iOS 26. (You may have to scroll down in the Software Update screen to find it under Also Available.)

Check and Update Your Device

To check your iOS version, go to Settings > General > About and look at the iOS Version line.

DarkSword targets iPhones running iOS 18.4 through iOS 18.7.2. If you’re running iOS 18.7.3 or later, or have upgraded to iOS 26.3 or later, you’re protected. Although none of the DarkSword security reports specifically mention the iPad, it’s best to assume that the corresponding versions of iPadOS are similarly affected.

Coruna can compromise older iPhones and iPads running iOS 13.0 through iOS 17.2.1. Apple recently released iOS 15.8.7 and iOS 16.7.15 to address these vulnerabilities on devices that cannot run newer iOS versions. Devices running iOS 13 or iOS 14 must be upgraded to iOS 15.8.7. Devices running a vulnerable version of iOS 17 should update to the latest version of iOS their device supports.

You can update using Settings > General > Software Update to the latest version of iOS your device supports:

  • iPhone 11 and later (and other devices that support iOS 26): Update to either iOS 18.7.7 or iOS 26.4 or later.
  • iPhone XR, XS, and XS Max: Update to iOS 18.7.7, the latest version these devices support, which includes the DarkSword fixes.
  • Older devices that can’t run iOS 18 (iPhone 6s through iPhone X, plus various older iPads and 7th-generation iPod touch): Update to iOS 15.8.7 or iOS 16.7.15, depending on your device. Devices still running iOS 13 or 14 will need to upgrade to iOS 15.8.7.

If you cannot upgrade for some reason, Apple says that enabling Lockdown Mode in Settings > Privacy & Security > Lockdown Mode in iOS 16 and later will block DarkSword attacks. However, Lockdown Mode significantly degrades the iPhone experience by blocking most message attachment types, disabling certain Web technologies, limiting incoming FaceTime calls, and more. For most people, upgrading to the most recent version of iOS available is the better option.

These discoveries make it clear that installing security updates promptly is more important than ever. Sophisticated exploits that were once reserved for targeted attacks against activists and journalists are now being deployed more broadly. Check your iOS version today, update all your devices, and encourage family members and colleagues to do the same.

(Featured image by iStock.com/sqback)

Social Media: Two major iPhone exploit kits—DarkSword and Coruna—can steal passwords, messages, and photos from everyday users who visit an infected website. Check your iOS version and update immediately to protect yourself.

Similar Posts

  • Droids, Drones, Scooters, Cars and USB C

    I remember only a couple years ago when drones were new and cutting edge technology. Now, there are huge sections of the show devoted to drones of all sorts: fighting drones, mini drones, paper airplane drones and dancing drones. I don’t know if it is the Star Wars influence but droids were everywhere, including “laundroids” for folding your laundry, grill cleaning droids, window washing droids and all kinds of robots.

    3D printers were new and unique and again whole sections of the show were devoted to “replicators” making everything from iPhone cases to clothing to spare body parts. Several companies were there just to show their filaments for these 3D printers.

    Scooters were everywhere. You know, the ones in the news that have the batteries that blow up. Well, literally dozens of companies were showing their versions and the original Segway had a booth, too. Some one-wheel scooters were there as well as shoes with wheels that zipped you around.

    p{text-align: center;}. !http://blog.smalldog.com/images/4638.jpg!

    Self-driving cars and technology for self driving cars dominated the North Hall and some concept cars were shown, too. My favorite was the Faraday electric car that looked like a single seat batmobile.

    USB-C made its debut at the show with hubs, cables and some USB display port displays, too. I think we will see a lot of USB-C stuff coming up!

    Less prevalent this year was the huge variety of iPhone and iPad cases. There were huge sections last time but while there were several companies showing cases it was toned way down. In their place, power banks of all sorts were being shown in every imaginable shape and size. The Apple battery case, aka the hump, was universally panned but several companies had slim battery cases for the iPhone.

    p{text-align: center;}. !http://blog.smalldog.com/images/4641.jpg!

    I did walk through the TV section but it was not as notable as in past years. The 3D fad has sort of expired and 4K displays are common. I still love the OLED displays, though.

    Other areas that were huge were health care and fitness with a lot of wearable fitness devices and health monitors or all sorts from implantable blood glucose devices to blood pressure cuffs, thermometers and scales. The home automation section was larger than previous years and there were some new HomeKit compatible devices. I liked the NoLok offering of bluetooth compatible padlocks and bike locks that work similar to the Kevo system.

    It was a quick trip out to Vegas but it was certainly worthwhile. I will follow up next week with a bit more.