Back

'DarkSword' Attack Targets iPhones via Phishing Emails

Severity: High (Score: 77.8)

Sources: Au.Pcmag, Uk.Pcmag

Summary

The 'DarkSword' attack is now exploiting unpatched iPhones through phishing emails, as reported by Proofpoint. These emails contain links to malicious sites that host DarkSword, targeting iPhones running iOS versions 18.4 to 18.7. The attack, previously used for cyberespionage, gained traction after its details were leaked online. Proofpoint suspects the Russian Federal Security Service is behind these phishing attempts, which masquerade as communications from the Atlantic Council. Users are urged to update their iPhones immediately to mitigate risks, as Apple has released patches for older devices. The phishing campaign has seen a modest increase in activity, primarily targeting international organizations. Users on iOS versions 13 and 14 must update to iOS 15 to receive necessary protections. Apple has been proactive in alerting users about the vulnerabilities and the importance of updates. Key Points: • DarkSword attack targets iPhones via phishing emails exploiting iOS vulnerabilities. • Russian Federal Security Service is suspected to be behind the phishing campaigns. • Users on iOS 18.4 to 18.7 are urged to update their devices immediately.

Key Entities

  • Malware (attack_type)
  • Phishing (attack_type)
  • Russia (country)
  • DarkSword (malware)
  • T1566.002 - Spearphishing Link (mitre_attack)
  • T1566 - Phishing (mitre_attack)
  • IOS (platform)
  • Safari (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed