Unprecedented malware attacks on iPhones: Apple urges update
Attackers used complex exploits to crack iPhones when visiting a website. Apple patches are available; users should install them urgently.
(Image: Sebastian Trepesch / heise medien)
iPhone, iPad, and Mac users should install all available updates as soon as possible. The latest versions of iOS 26 down to iOS 15 protect against vulnerabilities that were apparently used for large-scale attacks against iPhone users by the two powerful exploit kits DarkSword and Coruna, as Apple announced. Whether an update is available can be checked on the device in “Settings > General > Software Update”. Keeping the software up to date remains the most important component for protecting one's own device.
Not all iOS versions receive patches
The manufacturer did not provide exact version numbers with all available patches. Currently, iOS, iPadOS, and macOS 26.3.1, iOS 18.7.6, as well as iOS/iPadOS 16.7.15 and iOS/iPadOS 15.8.7 are available. For the old iOS/iPadOS versions, Apple released an emergency update last week, citing Coruna. Whether the exploit kits were also used against Macs remains unclear; Apple is currently providing security updates for macOS 26, macOS 15, and macOS 14.
Users who are still using iOS 17 will therefore need to update to iOS 18. iPhones still running iOS 13 or iOS 14 should switch to iOS 15 to fix the security vulnerabilities, the manufacturer notes.
Videos by heise
Several security researchers have published detailed analyses of DarkSword and Coruna lately. For the first time, highly complex exploit kits appear to have been used more broadly against arbitrary iPhone users – also for financial motivation and not solely as part of targeted state surveillance.
Malware introduced via websites
Accessing a manipulated website was sufficient for the complete compromise of the iPhone. Sensitive data could allegedly be read from the devices and transmitted to the attackers. The attacks targeted users in Ukraine, Turkey, and Saudi Arabia, among others; the exploits were specifically designed for certain versions of iOS 17 and iOS 18.
Empfohlener redaktioneller Inhalt
Mit Ihrer Zustimmung wird hier ein externer Preisvergleich (heise Preisvergleich) geladen.
Ich bin damit einverstanden, dass mir externe Inhalte angezeigt werden. Damit können personenbezogene Daten an Drittplattformen (heise Preisvergleich) übermittelt werden. Mehr dazu in unserer Datenschutzerklärung.
(lbe)
