March 18, 2026
Tap to panic
Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild
Hack on the loose; Apple says update now as users debate Wallet risks, old iPhones, and the weird “(a)”
TLDR: A powerful iPhone hack called DarkSword can hijack devices running older software via booby-trapped websites, and Apple rushed emergency updates. Commenters are split between mashing Update, fearing for Apple Wallet and older iPhones, and roasting the mysterious “(a)” patch note.
The internet lit up after researchers said a plug-and-play iPhone takeover tool called “DarkSword” was found on real websites, able to quietly hijack older iPhones just by visiting a page. Apple pushed emergency fixes and urged everyone to update, but the crowd? They’re equal parts panic, receipts, and roast.
First came the fear: one commenter saw an update labeled 26.3.1(a) and joked that the “(a)” basically means DEFCON 1. Others dropped receipts, linking Google’s detailed breakdown of the exploit chain here. The hottest debate: Are Apple Wallet passes and saved credentials actually safe if the phone itself gets owned? One commenter says the beloved “secure enclave” might not be the magic shield people think, and that has the thread arguing about what’s truly protected versus what can be siphoned off.
Then there’s the blame game. Some users are demanding Apple keep patching the older iOS 18 line for devices that can run iOS 26 but haven’t hopped over, while others say “just update already.” Meanwhile, the gallows humor is strong: one user resignedly declares their phone will “just suck now,” and the mysterious “(a)” letter has turned into a full-on meme. Drama level: high; update anxiety: higher; trust in Apple’s security story? Under heavy cross‑examination.
Key Points
- •Google, iVerify, and Lookout uncovered the DarkSword iOS exploit embedded in infected websites that silently compromise visiting devices.
- •DarkSword affects iOS 18 devices and not the latest updated versions; iOS 18 still powered roughly a quarter of iPhones as of last month, per Apple.
- •The exploit was used by a Russian state-sponsored espionage group and embedded in legitimate Ukrainian news and government websites.
- •DarkSword has also been used against victims in Saudi Arabia, Turkey, and Malaysia; customers of Turkish firm PARS Defense appeared to deploy it in Turkey and Malaysia.
- •Apple says it has released security updates for DarkSword and Coruna, including emergency updates for older devices unable to run iOS 26, urging users to update.