Apple is rolling out iOS and iPadOS updates for older devices to protect them against the recently disclosed DarkSword exploit kit.
A few weeks after the Coruna exploit kit came to light, iVerify, Google, and Lookout warned of another dangerous exploit kit targeting vulnerabilities in Apple’s mobile platforms.
DarkSword, which is linked to Coruna by shared infrastructure, targets six iOS vulnerabilities, and it can allow attackers to fully compromise devices with minimal user interaction.
Security firms warned that DarkSword has been used by both state-sponsored threat groups and commercial surveillance vendors. At least two Russian nation-state groups have been leveraging the exploit kit in their attacks.
Apple released patches for the vulnerabilities exploited by DarkSword in 2025, and the owners of recent devices running the latest iOS versions have been protected for months.
However, when DarkSword emerged last month, iVerify estimated that roughly 200 million devices running iOS versions between 18.4 and 18.6.2 may have been vulnerable.
Apple announced on April 1 that it has now made the latest iOS 18 version (18.7.7), which includes the DarkSword patches, available for additional devices.
“We enabled the availability of iOS 18.7.7 for more devices on April 1, 2026, so users with Automatic Updates turned on can automatically receive important security protections from web attacks called DarkSword,” Apple wrote in its advisory.
The iOS and iPadOS 18.7.7 updates address two dozen security flaws that could allow attackers to compromise devices or data, including kernel code execution, keychain access, activation lock bypass, and web browsing risks.
The updates are now available for iPhones such as XR, XS, XS Max, 11, SE (2nd and 3rd generation), 12, 13, 15, 16, and 16e, and iPad models such as 5th Gen mini (A17 Pro), 7th Gen (A16), Air (3rd–5th Gen & 11″/13″ M2–M3), and Pro (11″ 1st Gen–M4 & 12.9″/13″ 3rd Gen–M4).
Related: Apple Debuts Background Security Improvements With Fresh WebKit Patches
Related: Apple Updates Legacy iOS Versions to Patch Coruna Exploits
Related: Apple Patches iOS Zero-Day Exploited in ‘Extremely Sophisticated Attack’
