DarkSword Emerges as Powerful iOS Exploit Tool in Global Attacks

📌 DarkSword, a newly identified iOS exploit kit, has been actively used since late 2025 by multiple threat actors, including surveillance vendors and likely nation-state groups. The toolkit targets users in Saudi Arabia, Turkey, Malaysia, and Ukraine, enabling data theft and surveillance operations. Lookout Threat Labs discovered the exploit kit, which is deployed in global campaigns but no specific technical vulnerabilities (e.g., CVE IDs) or attack vectors were disclosed. The primary impact involves unauthorized access to sensitive data on compromised iOS devices. No additional exploit details or mitigation steps were provided in the report.