← Back to context Comment by joezydeco 4 days ago I got an alert this morning for an iOS update numbered 26.3.1(a).(a)? This must be really bad. 15 comments joezydeco Reply bombcar 4 days ago What device? I don't see anything beyond 26.3.1 on my iPhone 15 PromaxXDR™ aurea 4 days ago The update can be found underSettings > Privacy & Security > Background Security Improvements bombcar 4 days ago There it is, and I've never seen that area before. joezydeco 4 days ago iPhone 15 (vanilla) running iOS 18.7.2. I now have a permanent notification on my lock screen nagging me to update to iOS 26. qaz_plm 4 days ago Enabling beta updates for ios18 should kill the nagging notification. 5 replies → dewey 4 days ago > It can take over devices running iOS 18 that simply visit infected websites.I wonder if this is supposed to be > iOS 18 or really just version 18? quentindanjou 4 days ago It's in the source article (from Google Research group):> DarkSword supports iOS versions 18.4 through 18.7https://cloud.google.com/blog/topics/threat-intelligence/dar...The source exploits continued to be patched with all of them patched in iOS 26.3 dewey 4 days ago Oh, I was confused why the article was so short and chalked it up to it being some developing story. Turns out there's a "You’ve read your last free article." heading that hides the rest but it's not very obvious that there's an article hiding. FuriouslyAdrift 4 days ago Impact: Processing maliciously crafted web content may bypass Same Origin PolicyDescription: A cross-origin issue in the Navigation API was addressed with improved input validation.WebKit Bugzilla: 306050CVE-2026-20643: Thomas Espach eugenekolo 4 days ago Unrelated bug as far as I can tell.
bombcar 4 days ago What device? I don't see anything beyond 26.3.1 on my iPhone 15 PromaxXDR™ aurea 4 days ago The update can be found underSettings > Privacy & Security > Background Security Improvements bombcar 4 days ago There it is, and I've never seen that area before. joezydeco 4 days ago iPhone 15 (vanilla) running iOS 18.7.2. I now have a permanent notification on my lock screen nagging me to update to iOS 26. qaz_plm 4 days ago Enabling beta updates for ios18 should kill the nagging notification. 5 replies →
aurea 4 days ago The update can be found underSettings > Privacy & Security > Background Security Improvements bombcar 4 days ago There it is, and I've never seen that area before.
joezydeco 4 days ago iPhone 15 (vanilla) running iOS 18.7.2. I now have a permanent notification on my lock screen nagging me to update to iOS 26. qaz_plm 4 days ago Enabling beta updates for ios18 should kill the nagging notification. 5 replies →
dewey 4 days ago > It can take over devices running iOS 18 that simply visit infected websites.I wonder if this is supposed to be > iOS 18 or really just version 18? quentindanjou 4 days ago It's in the source article (from Google Research group):> DarkSword supports iOS versions 18.4 through 18.7https://cloud.google.com/blog/topics/threat-intelligence/dar...The source exploits continued to be patched with all of them patched in iOS 26.3 dewey 4 days ago Oh, I was confused why the article was so short and chalked it up to it being some developing story. Turns out there's a "You’ve read your last free article." heading that hides the rest but it's not very obvious that there's an article hiding.
quentindanjou 4 days ago It's in the source article (from Google Research group):> DarkSword supports iOS versions 18.4 through 18.7https://cloud.google.com/blog/topics/threat-intelligence/dar...The source exploits continued to be patched with all of them patched in iOS 26.3 dewey 4 days ago Oh, I was confused why the article was so short and chalked it up to it being some developing story. Turns out there's a "You’ve read your last free article." heading that hides the rest but it's not very obvious that there's an article hiding.
dewey 4 days ago Oh, I was confused why the article was so short and chalked it up to it being some developing story. Turns out there's a "You’ve read your last free article." heading that hides the rest but it's not very obvious that there's an article hiding.
FuriouslyAdrift 4 days ago Impact: Processing maliciously crafted web content may bypass Same Origin PolicyDescription: A cross-origin issue in the Navigation API was addressed with improved input validation.WebKit Bugzilla: 306050CVE-2026-20643: Thomas Espach
What device? I don't see anything beyond 26.3.1 on my iPhone 15 PromaxXDR™
The update can be found under
Settings > Privacy & Security > Background Security Improvements
There it is, and I've never seen that area before.
iPhone 15 (vanilla) running iOS 18.7.2. I now have a permanent notification on my lock screen nagging me to update to iOS 26.
Enabling beta updates for ios18 should kill the nagging notification.
5 replies →
> It can take over devices running iOS 18 that simply visit infected websites.
I wonder if this is supposed to be > iOS 18 or really just version 18?
It's in the source article (from Google Research group):
> DarkSword supports iOS versions 18.4 through 18.7
https://cloud.google.com/blog/topics/threat-intelligence/dar...
The source exploits continued to be patched with all of them patched in iOS 26.3
Oh, I was confused why the article was so short and chalked it up to it being some developing story. Turns out there's a "You’ve read your last free article." heading that hides the rest but it's not very obvious that there's an article hiding.
Impact: Processing maliciously crafted web content may bypass Same Origin Policy
Description: A cross-origin issue in the Navigation API was addressed with improved input validation.
WebKit Bugzilla: 306050
CVE-2026-20643: Thomas Espach
Unrelated bug as far as I can tell.