Security experts have recently discovered a wave of cyberattacks targeting Apple users worldwide. The hacking tools involved, known as Coruna and DarkSword, are being used by both rogue hackers and government agencies to steal sensitive information from iPhones and iPads.
It’s unusual to see such widespread attacks on Apple devices. In the past decade, similar incidents mainly affected specific groups, like Uyghurs in China or activists in Hong Kong.
Now, with portions of DarkSword leaked on code-sharing platforms, millions of older iPhones and iPads could be at risk. This development has raised alarms among security researchers.
### Understanding Coruna and DarkSword
Coruna and DarkSword are sophisticated hacking toolkits designed to exploit vulnerabilities in iOS. They can access private data, including messages, location history, and even cryptocurrency information. Research shows that Coruna targets devices running iOS versions from 13 to 17.2.1, while DarkSword is aimed at newer systems like iOS 18.4 and 18.7.
DarkSword poses an immediate threat because its leaked code is readily available for anyone to use. Hackers can easily launch attacks by just visiting compromised websites.
### How Do These Attacks Happen?
These attacks can be indiscriminate. Someone could become a target simply by visiting a seemingly safe website that has been compromised. Once a device is infected, hackers gain control, allowing them to siphon off personal data.
Some parts of the Coruna toolkit are linked to Trenchant, a U.S. company that develops hacking tools for government use. Kaspersky researchers even connected certain Coruna exploits to a significant cyberattack against iPhone users in Russia.
Among the many hacking tools developed, some have escaped into the wild, finding their way into the hands of not just government agents but also criminals. This is reminiscent of the 2017 WannaCry attack, which exploited a U.S. government-developed code to cause global disruptions.
### Current Situation
Recent findings indicate that DarkSword has been used to target users in several countries, including China and Ukraine. However, it’s unclear who developed or leaked this toolkit.
Currently, the leaked code remains on GitHub for security research, though this has raised ethical questions about the sharing of potentially harmful software.
### Protecting Your Device
To protect against these attacks, it’s vital to keep your device updated. Apple recommends updating to the latest iOS versions, which address these vulnerabilities. As per their statistics, nearly one-third of iPhone and iPad users still haven’t upgraded, making them susceptible to these exploits.
If you can’t or choose not to upgrade, consider enabling Lockdown Mode. This feature blocks many potential attacks and is particularly useful for people who may be targeted, such as activists or journalists.
Lockdown Mode isn’t flawless, but there’s no evidence that it has ever been bypassed. It has successfully thwarted attempts to plant spyware on vulnerable devices.
Staying informed and proactive about your device’s security can help mitigate risks in today’s digital landscape.
Source link
Apple,Coruna,cybercrime,cybersecurity,Darksword,Google,hackers,hacking,iOS,iPhone,iverify,Lookout,russia,Zero-days
