A potent new hacking technique, dubbed “DarkSword,” is silently compromising hundreds of millions of iPhones worldwide, not through targeted attacks, but by weaponizing ordinary websites visited by everyday users. This alarming development, revealed by researchers from Google, iVerify, and Lookout, marks a shift from rare, surgical cyber intrusions to a far broader, indiscriminate threat.
The Invisible Invasion
Previously, sophisticated iPhone exploits were akin to elusive creatures, used sparingly against a select few high-value targets. However, DarkSword is different. This technique is now being embedded within compromised websites, turning a casual browse into a potential gateway for hackers. Once a vulnerable iPhone visits such a site, the malware can instantly and silently take over the device, potentially stealing all personal data.
Widespread Vulnerability, Old and New
While Apple’s latest operating system versions are generally protected, DarkSword remains a significant threat to devices running older iOS versions. According to Apple’s own data from last month, nearly a quarter of all iPhones were still operating on previous releases, leaving a substantial portion of the global iPhone user base exposed. “A vast number of iOS users could have all of their personal data stolen simply for visiting a popular website,” stated Rocky Cole, iVerify’s co-founder and CEO. “Hundreds of millions of people who are still using older Apple devices or older operating system versions remain vulnerable.”
The ease with which this tool has appeared in a reusable form online suggests a concerning new era of widespread iPhone exploitation, where even a simple website visit could carry severe consequences for personal security.
