Last mentioned: Mar 23, 2026
Industry Response
Cybersecurity firms begin updating threat signatures to detect DarkSword-based spyware deployments.
Mirroring Commences
The exploit kit is mirrored across Telegram and alternative hosting sites, making total removal impossible.
Initial Leak
The DarkSword repository is discovered on GitHub, containing functional exploit code for iOS.
Public Reporting
TechCrunch and Yahoo Tech publish reports detailing the threat to millions of legacy iPhone users.
A sophisticated exploit kit dubbed "DarkSword" has been publicly leaked on GitHub, providing cybercriminals with tools to compromise millions of iPhones running older iOS versions. The leak enables the deployment of spyware, highlighting the persistent security risks faced by users on legacy mobile operating systems.