"DarkSword chains together six separate flaws in iOS and Safari, allowing attackers to quietly install malware on targeted devices. The exploit affects iPhones running iOS versions 18.4 through 18.7, and can be triggered simply by visiting a malicious or compromised website, requiring no further action from the user."
"Researchers say multiple groups are already deploying the tool in real-world attacks, including commercial spyware firms and state-backed actors, with activity observed in Saudi Arabia, Turkey, Malaysia and Ukraine."
"Users who believe they may be targets of such attacks, particularly journalists, activists or those handling sensitive information, are advised to enable Apple's Lockdown Mode by going to Settings, selecting Privacy & Security, tapping Lockdown Mode and following the prompts to turn it on and restart their device."
Google Threat Intelligence Group discovered DarkSword, a malware that chains together six separate flaws in iOS and Safari to enable unauthorized device access and personal information extraction. The exploit affects iPhones running iOS versions 18.4 through 18.7 and can be triggered by visiting a compromised website without user interaction. Multiple threat actors, including commercial spyware firms and state-backed groups, are actively deploying the tool in real-world attacks across Saudi Arabia, Turkey, Malaysia, and Ukraine. Apple states the vulnerabilities have been addressed in recent updates for current software versions. Users are advised to keep devices updated and enable Lockdown Mode, particularly those at higher risk such as journalists and activists.
#ios-security-vulnerability #malware-exploit #cybersecurity-threat #state-sponsored-attacks #mobile-device-security
Read at Mail Online
Unable to calculate read time
Collection
[
|
...
]