00:04Hello and welcome to Global Pulse News. A newer version of the advanced iPhone hacking tool,
00:11DarkSword, has been leaked and published on GitHub, prompting warnings from security researchers
00:16that the exploit can now be easily deployed by any hacker. The tool targets iPhones and iPads
00:23running iOS 18 or earlier, software versions still in use on hundreds of millions of active
00:29devices, according to Apple's own data. Researchers say the leaked code requires no specialized expertise
00:35to use. This is bad, they are way too easy to repurpose, said Matthias Freelingsdorf, co-founder
00:42of mobile security firm iVerify. I don't think that can be contained anymore. The files, written in
00:48HTML and JavaScript, can be copied and hosted on a server within minutes, researchers said. A security
00:55hobbyist using the handle Mathia confirmed he was able to compromise an iPad running iOS 18 using
01:01the leaked sample. Apple acknowledged the vulnerability and issued an emergency update on March 11 for
01:08devices that cannot run the latest iOS 26. Keeping your software up to date is the single most
01:14important thing you can do, said Apple's spokesperson Sarah O'Rourke, adding that lockdown mode also
01:20blocks the attack. The leaked code includes comments detailing how to exfiltrate contacts, messages,
01:27call history and keychain data from infected devices. Researchers previously linked Dark Sword to Russian
01:33government hackers targeting Ukrainian users. Google and iVerify researchers said the exploit works out of the box.
01:41Microsoft, which owns GitHub, did not respond to a request for comment. With roughly one quarter of Apple devices
01:48still running vulnerable software, security experts urge users to update immediately. Reporting from the
01:55newsroom, this is Megan for GPN. Stay tuned and stay safe.
Comments