A newly identified exploit highlights the importance of keeping devices updated
BADUNG, Bali — Cybersecurity researchers have identified a new exploit affecting certain iPhones, with experts warning that the most effective protection is simply keeping devices updated.
The finding comes from a joint analysis by the cybersecurity firms Lookout, iVerify, and Google, which uncovered a vulnerability impacting devices running iOS versions 18.4 through 18.6.2.
The malware, tracked as “Darksword,” is capable of extracting sensitive information from compromised devices. Researchers say cases have been linked to users who visited certain Ukrainian websites, although the full scope of infections has not been publicly disclosed.
For Bali’s expatriate and digital nomad community—many of whom rely heavily on iPhones for work, communication, and financial transactions—the advisory underscores a basic but critical step: updating software without delay.
Scope of the Threat
Researchers say the exploit has been observed in several countries, including Saudi Arabia, Turkey, Malaysia, and Ukraine.
In some cases, investigators identified links to PARS Defense, a Turkish commercial surveillance vendor that has not responded to requests for comment.
Estimates from Lookout and iVerify suggest that between 220 million and 270 million iPhones globally may still be running vulnerable software versions, leaving a large number of devices exposed to known risks.
“There is now a verified exploit pathway that has fallen into the hands of a potentially criminal entity,” said Justin Albrecht, a principal researcher at Lookout, in comments reported by Reuters.
Google’s Findings
Google Threat Analysis Group contributed to identifying the malware’s targeting patterns, noting that activity appeared concentrated in specific regions.
Researchers also documented a separate spyware variant known as “Coruna,” though its connection to the broader campaign remains under investigation.
Apple’s Response
Apple acknowledged the issue, emphasizing that it primarily affects devices running outdated software.
“Keeping software updated remains the most important thing users can do to maintain the high security of Apple devices,” a company spokesperson said.
The company added that users who have installed the latest iOS updates are not affected by the vulnerability.
What Users in Bali Should Do
For iPhone users in Bali—from remote workers and business owners to long-term residents—the guidance is straightforward:
Update your device immediately.
Security experts warn that delaying updates leaves devices exposed to known vulnerabilities. Potential risks include unauthorized access to personal data such as messages, photos, financial information, and login credentials.
A Growing Digital Risk Landscape
As Bali’s economy becomes increasingly connected—through remote work, online business operations, and international financial activity—cybersecurity risks are becoming more relevant to everyday life on the island.
The latest findings serve as a reminder that while advanced threats continue to evolve, basic protective steps remain highly effective.
For Bali’s connected community, keeping devices updated is a simple action that can significantly reduce exposure to digital threats.