Greg Knauss

Apparently, Apple isn’t going to patch iOS 18.6.2, meaning I either risk my information with DarkSword or my sanity with iOS 26.

Say what you want about Microsoft — please! use profanity! — but they wouldn’t let a zero-interaction, full-exfil bug go unfixed on a seven month old release.

Mar 24 at 5:16pmIvory for iOS
Show threadTaggart2d ago
@gknauss Hey! Do you have a source for this?
Show threadGreg Knauss2d ago

@mttaggart Nothing explicit, but reading between the lines…

iOS 26 has been fixed. iOS 18 for devices that can’t run iOS 26 has been fixed. And those who can run iOS 26 but don’t want to? [Conspicuous silence.]

https://www.wired.com/story/hundreds-of-millions-of-iphones-can-be-hacked-with-a-new-tool-found-in-the-wild/

Hundreds of Millions of iPhones Can Be Hacked With a New Tool Found in the Wild

A powerful iPhone-hacking technique known as DarkSword has been discovered in use by Russian hackers. It can take over devices running iOS 18 that simply visit infected websites.

WIRED
Show threadTaggart2d ago

@gknauss I think the thing is to move to 18.7.3, which is patched.

For devices running versions of iOS prior to 18.6, DarkSword uses CVE-2025-31277, a JIT optimization/type confusion bug which was patched by Apple in iOS 18.6. For devices running iOS 18.6-18.7, DarkSword uses CVE-2025-43529, a garbage collection bug in the Data Flow Graph (DFG) JIT layer of JavaScriptCore which was patched by Apple in iOS 18.7.3 and 26.2 after it was reported by GTIG. Both exploits develop their own fakeobj/addrof primitives, and then build arbitrary read/write primitives the same way on top of them.

I'm unaware of a compelling reason or hardware limitation to not upgrade from 18.6 to 18.7

https://cloud.google.com/blog/topics/threat-intelligence/darksword-ios-exploit-chain/

The Proliferation of DarkSword: iOS Exploit Chain Adopted by Multiple Threat Actors | Google Cloud Blog

DarkSword is a new iOS exploit chain that leverages multiple zero-day vulnerabilities to fully compromise iOS devices.

Google Cloud Blog
Show threadGreg Knauss2d ago
@mttaggart 18.7.X isn’t offered to me, since I’m on a iPhone 15 Pro. It’s either up to 26 or staying at 18.6.2.
Show threadTaggart2d ago
@gknauss Ah I see, and you'd rather not run into the Liquid Glass ceiling. That does seem to be an issue!
Show threadmirabilos2d ago
@mttaggart @gknauss same for SE 2022 (funnily, my SE 2016 does get patched…)
Show threadMisty2d ago

@gknauss @mttaggart Try opting into the iOS 18 public beta from the software update settings. It should offer 18.7.3 as an update, and being on that beta branch will prevent iOS 26 from appearing as well.

I did this when 18.7.3 came out since it wasn’t offered as “normal” update, just a final release on the beta branch. 18.7.4 on do seem to be exclusive to older devices though.

Show threadGreg Knauss2d ago

@misty I had this set, to avoid an accidental 26 upgrade. It’s saying 18.6.2 is the latest. Developer Beta says the same thing.

Alas, alas.

Show threadMisty2d ago
@gknauss Hmmmm. That *is* surprising. I wonder if Apple's now yanked iOS 18.7.3? It was available to me when it was new back in December, on an iPhone 13 mini that's eligible to upgrade to 26.
Show threadGreg Knauss2d ago

@misty I’m on a 15 Pro. I’m seeing my Mom on Thursday and will check her SE 3.

Computers were a mistake.

Show threadPhillip Upton1d ago

@misty @gknauss

I believe it was only available to phones that could run 26 for a short time* … but pulled for those phones after they realized what was going on.

*During which I was available to get it on a 16 pro

Show threadEric deRuiter2d ago

@misty @gknauss @mttaggart the beta path to 18.7.3 only worked for about a week until Apple stopped it. The only way to update to the latest 18 version is to have a phone / iPad model that doesn’t support 26.

It does still stop the 26 notification badge on settings.

Show threadMisty2d ago
@ridogi @gknauss @mttaggart Yuck. That’s really unfortunate.
Show threadJason Snell2d ago
@gknauss worse, it’ll patch it, just not for phones that can run 26
Show threadGreg Knauss2d ago

@jsnell If they hadn’t throttled the CPU because of the battery, I’d still be on my iPhone 6.

AND NOBODY WOULD BE ON MY LAWN.

Show threadAndrew Abdalian2d ago
@jsnell @gknauss I was hoping that the iOS 18 developer betas would continue to push patches. It's unconscionable not to. I truly do not understand it other than trying to push their iOS 26 adoption numbers.
Show threadNicolas Ward 2d ago
@abdalian @jsnell @gknauss I'm kinda surprised more enterprise phone fleets (that haven't updated their apps for 26 yet) aren't screaming about this
Show threadmirabilos2d ago

@jsnell @gknauss @mttaggart call customer support and file one at https://www.apple.com/feedback/iphone/

if they get even 10 million requests, maybe they begin to think

Feedback - iPhone

Apple wants to hear from you. Send us your comments and feedback about iPhone.

Apple
Show threadAndrew Abdalian2d ago
@gknauss which are you choosing, Sophie?
Show threadCynBlogger ❌👑2d ago
@gknauss
I’ve been one of the very reluctant upgradees to 26, but I bit the bullet last week on iPhone & iPad &…it’s all fine. I even like the (subdued) glass.
Show threadThe Doctor2d ago

@gknauss Yes, they would.

"This vulnerability is completely theoretical."

Show threadslyborg2d ago

@gknauss >letting malware hackers force your new UI that people hate on them

It's a bold strategy Cotton, let's see if it pays off for 'em…

Show threadSarah A2d ago
@gknauss I have to agree. there was a patch that went very, very wrong in windows 11 this patch tuesday. Or was it last month? anyway MS just released a fix last week. Taht was indeed fast.
Show threadFrancesco Marini2d ago
@gknauss https://mastodon.social/@fmarini/116283365807945104
Show threadPatrick2d ago
@gknauss they still might drop one, but apparently priority was 26.4 getting out the door. if they do it's might be like in between 26.5b2 and 3 or something weird like that
Show threadGreg Knauss2d ago
@ppb1701 That they’ve already released 18.7.3 for phones that can’t upgrade to 26 but nothing for those that can does not bode well, alas. “Upgrade to 26” is the current recommendation, which just happens to suit their interests (and not mine).
Show threadPatrick2d ago
@gknauss nope that doesn't bode well. I do think they will eventually patch it...but it does seem more like they wanna say. "Sure it's patched, do the update to 26"
Show threadDan Wineman2d ago
@ppb1701 @gknauss They did already patch it, then pulled the release from availability for phones that can run 26. There were a few days when you could still get 18.7.3 RC via the beta channel. They are intentionally exposing their customers to harms caused by their own past negligence, in order to promote a new product. Should be illegal.