CP
cyberpings
Threat IntelHIGH

Threat Intel - New DarkSword Tool Hacks Millions of iPhones

Featured image for Threat Intel - New DarkSword Tool Hacks Millions of iPhones
WRWired Security
DarkSwordiOS 18Russian hackerscyber espionagemalware
🎯

Basically, a new hacking tool can steal data from millions of iPhones just by visiting infected websites.

Quick Summary

A new hacking tool named DarkSword has emerged, targeting iPhones running iOS 18. This vulnerability affects millions of users, allowing hackers to steal sensitive data effortlessly. It's crucial for iPhone users to update their devices to mitigate risks.

The Threat

Recently, researchers uncovered a powerful iPhone hacking technique known as DarkSword. This tool has been found in use by Russian hackers, capable of compromising hundreds of millions of iPhones running iOS 18. Unlike previous hacking methods that targeted specific individuals, DarkSword can indiscriminately hack devices visiting infected websites. This represents a significant shift in how iPhone vulnerabilities are exploited, making it a major concern for users worldwide.

Who's Behind It

The hacking campaigns utilizing DarkSword are linked to a Russian state-sponsored espionage group. Researchers from Google, iVerify, and Lookout have noted that this tool is embedded in legitimate-looking websites, including news outlets and government sites. The fact that the full code of DarkSword is publicly available makes it easy for other malicious actors to adopt and use it for their own purposes. This accessibility raises alarms about the potential for widespread misuse.

Tactics & Techniques

DarkSword employs a fileless malware approach, which means it hijacks legitimate processes within the iPhone's operating system to steal data without leaving obvious traces. This technique allows hackers to execute a “smash-and-grab” style of data theft, quickly extracting sensitive information such as passwords, photos, and even cryptocurrency wallet credentials. The tool is particularly effective against older versions of iOS, with nearly a quarter of iPhone users still on iOS 18, making them vulnerable to attacks.

Defensive Measures

To protect against DarkSword, users should ensure their iPhones are updated to the latest iOS version. Apple has not yet commented on this discovery, but updating your device is crucial for security. Users can check for updates by navigating to Settings > General > Software Update. Additionally, security applications from iVerify and Lookout can help detect if a phone has been compromised by DarkSword. Staying informed about these threats is essential for safeguarding personal data in an increasingly dangerous cyber landscape.

🔒 Pro insight: The emergence of DarkSword highlights the growing market for exploit resale, making sophisticated attacks more accessible to cybercriminals.

Original article from

Wired Security · Andy Greenberg

Read Full Article

Share

Related Pings

HIGHThreat Intel

North Korea - Unveiling Stealthy Remote IT Worker Schemes

New research reveals North Korea's covert tactics for infiltrating businesses through remote IT workers. Companies must stay alert to avoid hiring these spies. Vigilance is key to protecting sensitive information.

Cybersecurity Dive·
HIGHThreat Intel

DarkSword - New iOS Exploit Chain Adopted by Threat Actors

A new iOS exploit chain called DarkSword is being used by various threat actors. This poses serious risks to users' devices and data. Security experts recommend updating iOS to mitigate these threats.

Mandiant Threat Intel·
HIGHThreat Intel

EU Sanctions - Chinese and Iranian Firms Targeting Hacking

The EU has sanctioned Chinese and Iranian firms for their roles in hacking operations against member states. This move highlights ongoing cyber threats and geopolitical tensions. Organizations must remain vigilant to protect against these sophisticated attacks.

SecurityWeek·
HIGHThreat Intel

FancyBear - Exposed Server Reveals Espionage Secrets

FancyBear's server exposure has revealed a major espionage campaign targeting NATO-linked organizations. Stolen credentials and 2FA secrets raise significant security concerns. Immediate action is required to mitigate risks.

Cyber Security News·
MEDIUMThreat Intel

Threat Intel - CISA Reports No Increase in Cyber Threats

CISA's Acting Director reports no increase in cyber threats from Iran amid ongoing military actions. The agency continues to monitor the situation closely. Cybercriminal activities remain a concern, and vigilance is key.

The Record·
HIGHThreat Intel

Iran's Cyberattack - A Warning for Future Operations

Iran's cyberattack on Stryker signals a dangerous shift in tactics. With escalating tensions, US businesses are now at greater risk. Experts warn of more aggressive operations ahead as Iran adapts its strategies.

The Register Security·