iOS 18.7.7 Update - Apple Expands to Block DarkSword Exploit
Basically, Apple is updating older iPhones and iPads to fix a serious security issue.
Apple has expanded the iOS 18.7.7 update to more devices. This update addresses the DarkSword exploit, which poses significant risks to older devices. Users are urged to enable auto-updates for vital security protections.
What Happened
On April 1, 2026, Apple announced the expansion of the iOS 18.7.7 and iPadOS 18.7.7 updates to a wider range of devices. This move aims to protect users from a recently disclosed exploit kit known as DarkSword. The update is crucial as it addresses vulnerabilities that could be exploited by cyber attackers.
Who's Affected
The update is now available for numerous devices, including:
- iPhone XR, XS, XS Max, 11, 12, 13, 14, 15, 16, and SE (2nd and 3rd generation)
- iPad mini (5th generation), iPad (7th generation), iPad Air (3rd to 5th generation), and various iPad Pro models This expansion is significant as it covers devices that may still be running older versions of iOS, leaving them vulnerable to attacks.
What Data Was Exposed
The DarkSword exploit kit has been linked to cyber attacks targeting users in regions such as Saudi Arabia, Turkey, Malaysia, and Ukraine since July 2025. The exploit can compromise devices running iOS versions between 18.4 and 18.7. It operates through watering hole attacks, where users unknowingly visit compromised legitimate websites, leading to data theft and backdoor installations.
What You Should Do
Apple encourages users to enable automatic updates to ensure they receive the latest security patches. For those without auto-updates, it is essential to manually update to the latest version of iOS 18 or consider upgrading to iOS 26. Ignoring these updates could leave devices exposed to ongoing threats.
Technical Details
The DarkSword exploit kit has been shared among multiple threat actors, raising concerns about its widespread use. A newer version of the kit was leaked on GitHub, which could potentially attract more attackers. The implications of this exploit are serious, as it highlights the growing sophistication of spyware targeting iPhones.
Industry Response
Apple's decision to backport security fixes to older devices is a notable shift in its policy. The company has previously focused on pushing users to upgrade to the latest operating system. This change reflects the urgency of addressing the vulnerabilities posed by DarkSword, especially with approximately 20% of users still on older iOS versions. The security community has welcomed this move, recognizing the importance of protecting users from emerging threats.