Apple, a US-based technology company that develops the iPhone, has expanded the availability of iOS 18 security updates to a broader range of devices to address vulnerabilities exploited by the DarkSword attack toolkit, according to a security update and reporting.
The company confirmed that iOS 18.7.7 is now available to more iPhones still running iOS 18, allowing users who have not upgraded to newer operating system versions to receive security protections. The update is designed to protect against web-based attacks associated with the DarkSword exploit kit.
DarkSword is a collection of exploits targeting iPhones running iOS 18.4 through 18.7. Security researchers identified multiple vulnerabilities used in these attacks, which can be triggered when a user visits a compromised website. The exploit chain enables attackers to execute code and deploy malware capable of stealing data from affected devices.
Researchers from organizations including Google Threat Intelligence Group, Lookout, and iVerify previously reported that the exploit kit had been used in active campaigns. According to those findings, the attackers deployed several types of information-stealing malware and backdoors on compromised devices.
Apple had been addressing the vulnerabilities through earlier iOS 18 updates since mid 2025. However, support for iOS 18 updates had been limited on newer devices that were capable of upgrading to more recent operating system versions. This left some users without access to newer patches if they chose to remain on iOS 18.
With the release of iOS 18.7.7, Apple has expanded update availability to include additional iPhone models, including devices from the iPhone XR through newer generations. This change allows more users to remain on iOS 18 while still receiving security fixes.
The update follows the public release of the DarkSword exploit kit, which increased the risk of wider use by threat actors. Apple stated that users with automatic updates enabled will receive the patch automatically, while others can install it manually to ensure protection.
The company continues to recommend installing the latest available updates to reduce exposure to known vulnerabilities and ongoing attack activity.