"Older iPhones at risk of iCloud breach" What is the 'DarkSword' attack? [Daily IT Pick]

[Financial News] A new hacking technique targeting iPhone users has been disclosed. The attack, named "DarkSword," can infect a device simply by having the user visit a specific web page.
According to U.S. IT outlet Engadget on the 21st, cybersecurity firms Lookout and iVerify recently revealed the new DarkSword hacking method. DarkSword targets multiple versions of iOS 18 and could potentially affect about 25% of all iPhone users.
Apple has reportedly already patched the vulnerability in iOS versions 15 through 26. It has also released emergency updates for devices that no longer support the latest iOS (for users on iOS 15 and 16). The company added that malicious URLs can be blocked through Safari's "Safe Browsing" feature. However, users on iOS 13 or 14 must update to at least iOS 15 to be protected.
DarkSword is a "fileless" attack. As soon as a user connects to a website containing malicious code, the code executes, seizes control of legitimate iOS processes, and then steals data. After exfiltrating the information, it can erase traces of its execution from the device, making detection difficult. The main targets include messages, iCloud content, and various passwords, and it is also designed to gain access to cryptocurrency wallets.
Evidence suggests this attack has been used in Ukraine, Saudi Arabia, Malaysia, Türkiye, and Russia. Engadget reported that DarkSword spread widely after Russian users recently posted its source code on websites.
DarkSword currently targets iOS versions from 18.4 to 18.6.2. About 24% of all iOS devices are still running iOS 18.
Engadget stressed, "Updating to the latest software is the most reliable countermeasure."
kaya@fnnews.com Choi Hye-rim Reporter