Security researchers have uncovered a series of cyberattacks aimed at Apple customers globally, utilizing advanced hacking tools called Coruna and DarkSword. These toolkits allow both government spies and cybercriminals to exploit vulnerabilities in iPhones and iPads, potentially compromising personal data like messages and location history.
Historically, widespread attacks on Apple devices have been rare, with notable exceptions like China’s targeting of Uyghur Muslims and pro-democracy advocates in Hong Kong. The hacking tools, particularly DarkSword, have been leaked online, raising concerns that hundreds of millions of devices running outdated software could be at risk.
Coruna reportedly targets devices running iOS 13 to 17.2.1, while DarkSword can hack iOS 18.4 and 18.7. A portion of DarkSword was made public on GitHub, enabling easier access for malicious actors. These attacks can occur simply by visiting compromised websites.
Both toolkits exploit various iOS vulnerabilities, allowing hackers to take control of devices and exfiltrate data. Research ties Coruna back to US defense contractor L3Harris, highlighting the proliferation of previously restricted hacking tools.
Current research indicates ongoing attacks against users in multiple countries, although the origins of DarkSword and its developers remain unclear. To mitigate risks, users are urged to update their devices to the latest iOS versions. For those unable to upgrade, Apple’s Lockdown Mode offers an alternative layer of protection against these threats.
Apple notes that about one-third of users are running outdated software, emphasizing the importance of timely updates to safeguard against these vulnerabilities.
Source link
