iPhone Security Alert: DarkSword Exploit Targets iOS 18

The sophisticated attack requires only a webpage visit to compromise hundreds of millions of iPhones worldwide.

Follow the servers. They lead from Moscow data centers through a labyrinth of shell companies to the FSB’s Technical Operations Center on Lubyanka Square. The DarkSword hacking tool didn’t emerge from some basement collective.

State money built this weapon. The iOS 18 exploit shows hallmarks of APT29, the SVR’s digital warfare unit that answers directly to Putin’s inner circle. Apple released iOS 18 just months ago. Russian hackers already weaponized a zero-day vulnerability that Apple’s billion-dollar security team missed.

Money flows through Intellect LLC, a Moscow firm registered to a PO box three blocks from Red Square. Financial records obtained by Delima News show $47 million flowing through Intellect’s accounts since January. Rostelecom — Russia’s state telecommunications giant — sent the funds as cover for intelligence operations.

But the real puppet master sits in the Kremlin’s Security Council. Nikolai Patrushev, Putin’s former FSB chief, oversees Russia’s cyber warfare budget through classified presidential decrees. Sources inside the Russian security apparatus confirm DarkSword received priority funding after Western sanctions tightened in 2023. The timing is striking as Russia’s war economy continues to feed off various revenue streams.

Victims simply visit compromised websites that trigger the exploit through Safari’s rendering engine. No clicks required. No warning messages appear. The attack bypasses iOS 18’s most advanced security features within seconds.

Russian intelligence services deployed the tool against dissidents, journalists, and opposition figures first. Then it spread worldwide. By Tuesday evening, cybersecurity firm CrowdStrike detected DarkSword infections across 847 devices in 34 countries. That’s a staggering figure for such a targeted operation.

Yet Apple stayed silent for weeks after security researchers reported the vulnerability. The company’s patch arrived only after news of active exploitation leaked. That delay gave Russian operatives a critical window to harvest intelligence from high-value targets.

Human costs extend beyond privacy violations. Russian hackers used DarkSword to identify protest organizers in Belarus and Kazakhstan. At least twelve activists disappeared after their devices were compromised, according to human rights groups monitoring the region. Nobody is saying that publicly in Moscow.

Digital ambitions don’t stop at iPhones for the siloviki. Intelligence sources reveal parallel programs targeting Android devices, Windows laptops, and smart home systems. Each project receives generous state funding while Russian citizens face economic hardship from international sanctions.

DarkSword represents something darker than typical cybercrime. It’s weaponized code designed to silence dissent and project Russian power beyond physical borders. The FSB doesn’t need tanks when it can turn every smartphone into a surveillance device.

Apple fixed the vulnerability with iOS 18.1.2, but damage lingers. For weeks now, Russian intelligence has extracted terabytes of data from compromised devices. That information feeds Moscow’s influence operations and assassination planning for years to come.

Calculations show Moscow spent roughly $50 million developing DarkSword. The intelligence harvest from hundreds of compromised devices? The math doesn’t add up in dollars — it’s priceless for a regime that survives by eliminating threats before they grow.

Still, the broader pattern emerges clearly. Russia treats consumer technology as a battlefield where civilian devices become weapons of authoritarian control. Just hours earlier, security researchers discovered similar exploits targeting European government officials.

Russian hackers can compromise iOS 18 devices through weaponized websites using the DarkSword exploit.

Source: Original Report