Apple has taken an unusual step by releasing a new security update for users who are not running the latest version of iOS. The iPhone maker has recently released iOS 18.7.7 to protect these users from a dangerous exploit called DarkSword, which is capable of stealing data from a person’s device.
The release is unusual as the company has long insisted that users upgrade to the latest version of iOS for security updates. However, the DarkSword situation has pushed Apple to act differently.
DarkSword is a hacking toolkit that targets Apple devices running iOS 18.4 through 18.7. It can break into vulnerable devices if a user visits a website that hosts the malicious code. The exploit can steal a person’s device data, including messages, browser histories, location data, and cryptocurrency, and upload the information to a server hosted by hackers.
Apple had already rolled out fixes for users running its latest software, iOS 26, weeks ago. The latest update now covers users who prefer staying on older versions, either for familiarity or performance reasons. The hacking tools have already been seen in certain attacks targeting users in China, Malaysia, Turkey, Saudi Arabia, and Ukraine.
GitHub leak raises security concerns
The situation became more serious after a newer version of DarkSword was leaked and published on the code-sharing site GitHub. Researchers warned that this could allow hackers to easily use the tools to target iPhone users running older versions of Apple’s operating systems who have not yet updated to the latest iOS 26 software.
With the release of iOS 18.7.7, Apple has brought users of older iOS versions under a security umbrella against the DarkSword exploit.
Apple users who have enabled automatic software updates should receive the new software. The company has also said that its optional security feature, Lockdown Mode, protects devices against DarkSword attacks.
This is also the second time in a month that Apple has taken this approach. Earlier, the company released fixes for iOS 17 to deal with another advanced hacking toolkit called Coruna. That case also involved real-world attacks and pushed Apple to respond beyond its usual update strategy.
