John Z Black
Brunswick, ME • (207) 245-1010 • contact@johnzblack.com
Apple Is Literally Warning Millions of iPhone Users: You're Being Attacked Right Now
Apple pushed lock screen alerts to millions of iPhones warning of active attacks from the Coruna and DarkSword exploit kits -- and some users have no patch path at all.
Read More
CISA Added Five Actively Exploited Flaws to Its List. You Have Until April 3.
CISA added five actively exploited vulnerabilities to its KEV catalog, including three Apple flaws tied to the DarkSword iOS exploit kit and a CVSS 10.0 RCE in Craft CMS. The April 3 deadline is for federal agencies. The exploitation isn't.
Read More
iPhone Exploit Kits Go Mainstream: DarkSword, Coruna, and the End of 'iOS Is Enough'
New research from Google, iVerify, and Lookout confirms iOS exploit kits have moved from rare targeted spyware to website-level deployment against broad populations. A companion toolkit was found targeting US government officials specifically.
Read More
DarkSword Spread Beyond One Campaign. Mobile Risk Has to Follow.
Google threat intelligence ties DarkSword-linked iOS exploitation to a broader actor picture than earlier reporting suggested. The bigger signal isn't the exploit chain. It's that the capability is spreading across actors and channels.
Read More
iPhone Exploit Chains Are Becoming a Market, Not a One-Off
DarkSword iOS exploit capability is showing up across multiple actor sets -- state-linked groups, commercial spyware vendors, and infostealer campaigns. The old 'rare nation-state' framing doesn't hold anymore.
Read More