Historically, Apple has adhered to a strict policy regarding security updates for iOS, often requiring users to upgrade to the latest version of the operating system to benefit from essential software patches that address vulnerabilities exploited by hackers. This approach left no room for users who preferred to remain on older versions.
However, the recent emergence of two complex hacking techniques targeting iPhones within a single month has prompted a significant shift in Apple's patching strategy. In response to the proliferation of advanced hacking tools, Apple is now rolling out patches for older versions of iOS for the second time in a matter of weeks. Notably, these patches will be accessible even to devices that are capable of updating to the latest iOS version.
An Apple spokesperson communicated the company's commitment to bolstering security measures by issuing software updates specifically aimed at protecting iOS users from a hacking method known as DarkSword. This tool has the capability to seize control of certain iPhones running iOS 18 when users are led to malicious websites. While users who have upgraded to the recent iOS 26, released in September, are safeguarded against DarkSword, the new patch will extend protection to those who have not yet transitioned from iOS 18.
The decision to enable iOS 18 users to receive patches without the requirement to upgrade represents a notable change in Apple's policy. Previously, after researchers at Google and cybersecurity firms unveiled DarkSword, Apple had restricted iOS 18-specific patches to older devices that lacked the hardware support for iOS 26, effectively encouraging owners of newer devices to update to the latest operating system.
As of February, approximately a quarter of all iPhone users were still operating on iOS 18, with many opting not to upgrade due to dissatisfaction with certain features of iOS 26, such as the new "liquid glass" interface. Consequently, millions of users were left exposed to security risks while adhering to their preferred software versions.
Apple's recent strategy adjustment appears to be an effort to protect these users. The spokesperson indicated that an updated version of iOS 18 will soon become available for a broader range of devices, ensuring that those with auto-update enabled receive critical security protections automatically. Users who have disabled auto-update will have the option to either download the patched version of iOS 18 or upgrade to iOS 26.
As DarkSword continued to circulate among hacking circles, criticism toward Apple for its previous lack of backported patches intensified, especially given the tool's association with a variety of malicious activities, including espionage and cryptocurrency theft. Reports emerged of DarkSword compromising the iPhones of users located in Malaysia, Saudi Arabia, Turkey, and Ukraine. The malware's code was noted for being left in a state that allowed for reuse on legitimate websites, facilitating its repurposing by other hackers.
Last week, DarkSword's code was made publicly available on the open-source platform GitHub, significantly increasing its accessibility. Security firms subsequently issued warnings that various groups, including one linked to Russia's FSB intelligence agency, have begun utilizing this method in phishing campaigns. By late last week, new active domains targeting users in the United States were identified as part of a DarkSword operation.
Despite the growing risks presented by DarkSword for users of iOS 18, many have expressed resistance to updating to iOS 26, sharing their frustrations on platforms such as Reddit regarding the interface and features of the latest version.
Share this story