Apple has deviated from its usual practice in response to a recent surge in iPhone hacking incidents that have alarmed users not on the latest software version. The tech giant has traditionally reserved security updates exclusively for the newest iOS iteration, but it is now making a rare move by issuing critical patches for older versions as well. This shift comes in light of the emergence of DarkSword, a dangerous exploit targeting iPhones in real-world attacks.
For a long time, Apple’s stance has been straightforward: to ensure security, users must update their devices to the most recent supported iOS release. Those who opted to stay on older versions, whether out of preference for familiarity or performance concerns, had limited options. However, the DarkSword threat has compelled Apple to take a different approach, at least temporarily. Fortunately, Apple has confirmed to Wired its intention to roll out a security update specifically for users operating on iOS 18. This update aims to thwart DarkSword, a hacking method capable of surreptitiously seizing control of certain iPhones when users visit compromised websites. Devices already running iOS 26 remained unaffected, whereas those on iOS 18 were left vulnerable.
Apple’s adjustment to its software update policy is noteworthy. The company is not restricting this fix to outdated devices incapable of running the latest software. Even iPhones eligible for an upgrade to iOS 26 will now receive a patched version of iOS 18. In cybersecurity circles, this practice is known as backporting, where security enhancements are extended to older software versions without necessitating a complete upgrade.
An Apple spokesperson disclosed, “Tomorrow, we are enabling the availability of an iOS 18 update for more devices so users with auto-update enabled can automatically receive important security protections.” Despite this move, the company continues to advocate transitioning to iOS 26 for optimal protection.
This decision follows escalating concerns in recent weeks as DarkSword attacks spread. Researchers identified various hacker groups exploiting the vulnerability for activities like surveillance and cryptocurrency theft. In some instances, the malicious code was openly accessible on compromised websites, facilitating its reuse by others.
The situation intensified when the exploit surfaced on GitHub, widening its accessibility. Subsequently, security firms cautioned about phishing emails leveraging the same technique. Investigators also detected counterfeit websites engineered to infect users, including those outside the initial target zones.
Despite the risks, numerous iPhone users had refrained from upgrading to iOS 26. Some were dissatisfied with changes like the new “liquid glass” interface, while others encountered challenges related to app compatibility, storage constraints, or region-specific functionalities. For these users, the upgrade decision was not straightforward.
This predicament left millions in a dilemma – stick with a familiar version or transition to a newer one with uncertain trust. Apple’s recent move seems aimed at alleviating this dilemma by offering protection without imposing an immediate upgrade.
However, security experts have criticized the timing of Apple’s response, noting that users remained vulnerable for several days as the exploit propagated. Some argue that such security measures should be standard practice, particularly in the presence of active threats.
This marks the second instance in a month where Apple has adopted this approach. Earlier, the company issued remedies for iOS 17 to combat another sophisticated hacking toolkit named Coruna. That episode also involved real-world attacks, prompting Apple to deviate from its conventional strategy.