CISA Mandates iOS DarkSword Patch

CISA Mandates iOS DarkSword Patch

The Cybersecurity and Infrastructure Security Agency has ordered U.S. federal agencies to patch three iOS vulnerabilities exploited via the DarkSword exploit kit in active cryptocurrency theft and cyberespionage operations.

The directive follows a documented pattern in which commercial or semi-commercial exploit tooling is deployed across financially motivated and state-adjacent intrusion campaigns simultaneously. DarkSword's dual-use profile — targeting both financial assets and intelligence objectives — indicates either shared infrastructure between distinct threat actors or a single actor operating across multiple collection priorities.

Source: Telegram "sitreports"