According to Google Threat Intelligence Group (GTIG), Google’s threat intelligence team discovered a full exploit chain for iOS named DarkSword, which leverages six vulnerabilities—including multiple zero-days—to achieve complete device compromise. Since November 2025, this exploit has been used by multiple commercial surveillance vendors and suspected state-backed threat actors in attacks targeting users in Saudi Arabia, Turkey, Malaysia, and Ukraine. DarkSword supports iOS versions 18.4 through 18.7. Upon successful exploitation, attackers can deploy three types of malware: GHOSTBLADE, GHOSTKNIFE, and GHOSTSABER—all written in JavaScript—which are capable of stealing communication logs, location history, browser data, and cryptocurrency wallet information, as well as recording audio, taking screenshots, and executing backdoor commands. GTIG reported the vulnerabilities to Apple at the end of 2025, and all have been patched with the release of iOS 26.3. The associated domains have been added to Google Safe Browsing’s blocklist. Users are strongly advised to update to the latest iOS version immediately.
Google Discovers iOS Vulnerability Chain DarkSword Targeting Crypto Wallets
TechFlowShare
Summary
Google recently uncovered a new iOS exploit chain called DarkSword, part of recent cybersecurity vulnerability news. The chain exploits six vulnerabilities, including zero-days, to achieve full device control. Attackers have been using it since November 2025 to target users in Saudi Arabia, Turkey, Malaysia, and Ukraine. The exploit supports iOS versions 18.4 through 18.7 and deploys three JavaScript-based malware variants to steal sensitive data, including on-chain information such as crypto wallet details. Google disclosed the vulnerabilities to Apple by the end of 2025, and all were patched in iOS 18.3. Apple has also added related domains to its Safe Browsing list, urging users to update their devices.
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.