In response to a surge in hacking incidents involving iPhones, Apple has announced a departure from its long-standing policy regarding software updates. The company, typically steadfast in its position that security enhancements are only available through the latest iOS versions, has decided to provide vital fixes to older software as well. This change comes as a result of the DarkSword hacking exploit, which has begun targeting iPhones during real-world attacks.

For years, Apple maintained a straightforward guideline: users seeking security must upgrade their devices to the newest iOS version compatible with their models. However, the emergence of DarkSword has compelled Apple to adopt an alternative course of action, albeit temporarily. The tech giant confirmed plans to issue a security update aimed specifically at devices running iOS 18, intended to mitigate the risks associated with the exploit that can covertly take control of certain iPhones when users access compromised websites. While devices operating on iOS 26 remain unaffected, users on iOS 18 faced significant vulnerabilities.

Implications of Backporting Security Fixes

What is particularly notable about this decision is Apple’s choice to extend the fix beyond merely older devices incapable of running the latest software. iPhones that can be upgraded to iOS 26 will also receive an updated version of iOS 18 that includes essential security patches. This practice, known in cybersecurity as backporting, allows companies to send security updates to older software without necessitating a complete upgrade.

An Apple spokesperson indicated that the iOS 18 update would soon be available for a broader range of devices, allowing users with automatic updates enabled to receive critical security measures promptly. Nevertheless, the company reiterated its standard advice, encouraging users to transition to iOS 26 for optimal protection.

Rising Threats and User Response

The decision follows growing criticism over the past weeks as DarkSword attacks escalated. Cybersecurity researchers discovered that various hacker groups had been leveraging the exploit for purposes such as surveillance and cryptocurrency theft. In several instances, malicious code was left openly accessible on compromised websites, facilitating its reuse by other malicious actors.

The situation intensified when the exploit surfaced on GitHub, leading to widespread accessibility. Subsequently, security firms began to warn users about phishing emails employing similar techniques, while investigators uncovered fake websites designed to infect users both within and outside the targeted regions.

Challenges Faced by iPhone Users

Despite the risks posed, many iPhone users remained on iOS 18. Concerns regarding alterations like the new “liquid glass” interface, as well as issues related to app compatibility, storage limitations, and region-specific features contributed to their reluctance to upgrade. For these users, the choice between sticking with a familiar version or transitioning to a new one presented a complicated dilemma.

Apple’s recent amendment appears to alleviate some of this pressure by providing necessary protection without mandating an upgrade. However, cybersecurity professionals argue that the company’s response may have come too late, noting that users were left vulnerable for days as the exploit proliferated. Some experts advocate for regular fixes as a standard practice, especially when active threats exist.

This marks the second occasion within a month that Apple has opted to modify its update strategy. Previously, the company addressed vulnerabilities associated with another hacking tool named Coruna, which also prompted real-world attacks and required a departure from its usual update protocol.

Long or Short, get news the way you like. No ads. No redirections. Download Newspin and Stay Alert, The CSR Journal Mobile app, for fast, crisp, clean updates!

App Store –  https://apps.apple.com/in/app/newspin/id6746449540 

Google Play Store – https://play.google.com/store/apps/details?id=com.inventifweb.newspin&pcampaignid=web_share