Malware - Major iPhone Hacking Tools Leaked Online
Basically, two dangerous hacking tools for iPhones are now available online, threatening millions of users.
A significant leak of iPhone hacking tools, Coruna and DarkSword, poses a major risk to millions of users. Many devices remain vulnerable due to outdated software. Immediate updates are crucial to protect personal data from potential theft.
What Happened
Security researchers have recently uncovered a significant leak of advanced hacking tools known as Coruna and DarkSword. These tools have been used in cyberattacks targeting Apple customers globally. The leak is alarming because it potentially exposes hundreds of millions of iPhones and iPads running outdated software to data theft. Historically, such widespread hacks against iOS users have been rare, with notable exceptions in specific geopolitical contexts.
The leaked tools are capable of breaking into iPhones and iPads, stealing sensitive data like messages, browser history, and location information. The urgency of this situation is compounded by the fact that parts of the DarkSword toolkit have been made publicly available on GitHub, allowing anyone to launch attacks against vulnerable devices.
How It Works
Coruna and DarkSword exploit vulnerabilities in iOS, allowing hackers to gain almost complete control over a target's device. Victims can be compromised simply by visiting a website that hosts the malicious code. Once infected, the malware can upload private data to servers controlled by the attackers. This method of infection is particularly dangerous, as it can ensnare unsuspecting users with minimal effort.
The leaked tools are designed to be user-friendly, making them accessible even to less experienced hackers. Researchers have already demonstrated the effectiveness of these tools by successfully hacking their own devices running vulnerable versions of iOS. This ease of use raises the stakes for anyone with outdated software.
Who's Being Targeted
The leaked hacking tools are particularly concerning for users of older iPhone and iPad models running iOS versions from 13 to 17.2.1 and the latest devices on iOS 18.4 and 18.7. Apple estimates that nearly one in three of its users are still not running the latest software, which means potentially hundreds of millions of devices are at risk. The tools have already been observed in attacks targeting users in various countries, including China, Malaysia, and Ukraine.
As the tools circulate, the risk of exploitation increases. Users who do not update their devices could find themselves vulnerable to data theft and other malicious activities. The implications of this leak could be far-reaching, affecting not only individual users but also organizations that rely on Apple devices.
What You Should Do
If you own an iPhone or iPad, the most critical action is to update your device immediately to the latest iOS version. Apple has stated that users running iOS 15 through 26 are protected against these threats. For those unable to upgrade, enabling Lockdown Mode can provide an additional layer of security. This feature, introduced in iOS 16, is designed to protect users who may be targeted due to their work or personal circumstances.
In summary, the leak of Coruna and DarkSword represents a significant threat to iPhone and iPad users. Staying informed and proactive about software updates is essential to mitigate the risks associated with these powerful hacking tools.
TechCrunch Security