This new iPhone hack can steal your data just by visiting a website
Apple issues urgent update after leak exposes millions of older devices
It started, as many modern cyber threats do, with a leak.
In late March, security researchers began tracking a quietly circulating exploit kit known as “DarkSword”—a toolkit capable of compromising iPhones and iPads through a malicious website. Within days, the code surfaced publicly online, dramatically lowering the barrier for attackers.
DarkSword isn’t just another bug. It’s a full exploit chain that can remotely access sensitive data on vulnerable devices. Once triggered, it can extract messages, track location, access photos, scrape browser data, and even target crypto wallets—without requiring the user to install anything. In some cases, it enables persistent surveillance-like access.
Get updated faster and for FREE: Download the Gulf News app now - simply click here.
By April 1, TechCrunch reported that Apple had responded with an unusually broad fix: iOS 18.7.7 and iPadOS 18.7.7, specifically designed to protect older devices still widely in use.
The urgency was clear. The exploit targeted devices running iOS 18.4 through 18.7, and had already been observed in real-world attacks across multiple regions. The public leak transformed DarkSword from a niche surveillance capability into a scalable global threat.
Apple’s response marked a shift. Instead of limiting protection to its latest OS, the company issued backported patches—a rare move—acknowledging that millions of users remain on older versions.
For users, the takeaway is simple: this wasn’t a theoretical flaw. DarkSword turned a website visit into a potential breach. And for Apple, it’s a reminder that security now extends far beyond the newest devices—it must protect the entire ecosystem.
