Newsletter Newsletters Events Events Podcasts Videos Africanews
Loader
Latest
Trending
Latest stories
Europe
Categories
Programmes
Featured
World
Categories
Programmes
Featured
EU Policy
Business
Categories
Programmes
Featured
Travel
Categories
Programmes
Next
Categories
Programmes
Featured
Culture
Categories
Programmes
Green
Categories
Programmes
Featured
Health
Categories
Programmes
Euroviews
Videos
More
Special coverage
Partner content
Services
Newsletter Newsletters Events Events Podcasts Videos Africanews
Loader
Find Us
Flipboard Instagram Linkedin
Advertisement

New iPhone hack steals messages, emails, and location from ‘millions’ of phones in seconds

FILE - In this Oct. 19, 2009 file photo, the Apple logo is seen on an Apple store in San Francisco
FILE - In this Oct. 19, 2009 file photo, the Apple logo is seen on an Apple store in San Francisco Copyright  AP Photo/Russel A. Daniels, File
Copyright AP Photo/Russel A. Daniels, File
By Anna Desmarais
Published on
Share Comments
Share Close Button

So-called ‘DarkSword’ attacks break through Apple devices’ security defences to steal personal data in seconds.

Cybersecurity experts are sounding the alarm about a new type of hacking campaign, called “DarkSword,” that could access personal data on millions of iPhones.

ADVERTISEMENT
ADVERTISEMENT

The attacks target iPhones with iOS versions 18.4 through 18.6.2 with a “hit-and-run” technique that steals personal data, including a user’s text messages, emails, and location history, in a matter of minutes, according to a joint investigation from Google, cloud company Lookout and privacy platform iVerify.

Hackers exploit Apple’s default browser, Safari, and a graphics feature called WebGPU to break through the iPhone’s usual security defences. Once inside, data is sent off within seconds, and all traces of the intrusion are immediately erased, making detection difficult.

Approximately 14 percent of iPhone users on over 221 million devices run iOS versions that could be vulnerable, according to iVerify. That number could climb up to 270 million devices if other versions of iOS, older or newer, are vulnerable.

Related

“DarkSword represents a notable shift that we've predicted for years,” said Justin Albrecht, global director of mobile threat intelligence at cybersecurity company Lookout. “Advanced mobile malware has ceased to be a tool wielded solely by governments for espionage and is now in the hands of groups seeking financial gain.”

Lookout said the threat is likely deployed by a Russian-linked threat actor called UNC6353, who was first identified by Google. Researchers have observed this group and other state-linked hackers using Darksword in Saudi Arabia, Turkey, Malaysia, and Ukraine.​

UNC6353 compromised Ukrainian websites by installing a malicious script into those sites. When a user accessed the site, malware was installed on their computer, which then stole personal information, according to Google.​

Euronews Next reached out to Apple but did not receive an immediate reply. The company told Reuters that device vulnerabilities have been addressed by several updates over several years.

Go to accessibility shortcuts
Share Comments

Read more