Cybersecurity experts warn of a new hacking campaign, 'DarkSword,' exploiting iPhones running iOS 18.4 through 18.6.2. The attack steals text messages, emails, and location history in seconds.
The exploit targets Apple’s Safari browser and the WebGPU graphics feature, bypassing standard security. Data is exfiltrated rapidly, with no trace left behind.
Approximately 221 million devices are currently vulnerable-up to 270 million if other versions are affected. The threat actor UNC6353, linked to Russia, has deployed the malware via compromised websites in Ukraine, Saudi Arabia, Turkey, and Malaysia.
According to Lookout, such advanced malware is no longer limited to state espionage but is now used for financial gain. Apple says vulnerabilities have been addressed in recent updates.