Apple has issued an urgent call for users to update their iPhones, iPads, and Macs following the discovery of two sophisticated spyware campaigns targeting vulnerabilities in older operating systems. The company released patches this week for what it describes as "background security improvements," a move cybersecurity researchers say is a direct response to active threats.

State-Linked Spyware Campaigns Uncovered

Security researchers this week identified malware, dubbed "DarkSword," capable of infiltrating iPhones and exfiltrating data. According to reports, the spyware impacted devices running iOS versions 18.4 through 18.6.2—software released throughout 2025—when users visited specific Ukrainian websites. This discovery follows a separate report earlier this month from Google and mobile security firm iVerify detailing another exploit kit named "Coruna," which has previously been linked to a suspected Russian espionage group. That kit targeted iPhones running iOS 13 through 17.2.1, versions released between 2019 and 2023.

Read also
Technology
NASA Redirects $20 Billion to Lunar Surface Base, Shelves Orbital Gateway Station
NASA will shift $20 billion over seven years to build a lunar surface base, placing its planned orbital Gateway station on hold, Administrator Jared Isaacman announced Tuesday.

The emergence of these campaigns highlights the persistent threat of state-sponsored cyber operations targeting consumer devices. These incidents often intersect with broader geopolitical tensions, similar to the escalating cyber and kinetic conflicts documented in the Middle East.

Apple's Patch Strategy and User Guidance

In a statement to NBC News, an Apple spokesperson reinforced that installing software updates "remains the single most important thing users can do to maintain the high security of their Apple devices." The company released iOS 26.3.1, iPadOS 26.3.1, and macOS 26.3.1 and 26.3.2 on Tuesday specifically to address these vulnerabilities.

Notably, Apple also released iOS 15.8.7 and iPadOS 15.8.7 for older devices incapable of running the current iOS 26, such as models older than the iPhone 11. This is an unusual step, as devices deemed "vintage" typically stop receiving updates. The update notes confirm these patches bring the fix for the Coruna exploit to legacy hardware.

How to Update Your Device

Users are advised to check for updates immediately. On an iPhone or iPad, navigate to Settings > General > Software Update. If an update is available—currently iOS/iPadOS 26.3.1 as of March 19—install it. Users can also enable automatic updates from this screen. On a Mac, search for "Software Update" using Spotlight or go to System Settings > General > Software Update. Macs should be updated to macOS 26.3.1 or 26.3.2.

The rapid deployment of these patches underscores the critical role of private sector cybersecurity in national defense infrastructure. As digital threats evolve, the responsibility on tech giants to secure global communications increases, a dynamic often reflected in shifting policies at institutions like the Pentagon regarding information security.

This incident serves as a stark reminder that consumer technology is a frontline in modern espionage. While Apple's ecosystem is often praised for its security, these events demonstrate that persistent vigilance and timely software maintenance are non-negotiable for personal and organizational safety. The linkage of these exploits to state actors transforms a routine update from a maintenance task into a necessary counter-intelligence measure for millions of users worldwide.