What happened
Apple expanded the availability of iOS 18.7.7 / iPadOS 18.7.7 to a broader set of iPhones and iPads on April 1, 2026. According to Apple’s security note, this was done so users with Automatic Updates enabled can receive protections tied to web attacks referred to as DarkSword.
This is important because many users were still on iOS 18, and some of those devices previously had a narrower update path.
Why this matters
When a widely discussed exploit chain is being used in real campaigns, patch availability gaps create easy targets. Expanding the 18.7.7 update path lowers that exposure for users who have not yet moved to iOS 26.
Even if you plan to stay on iOS 18 for now, this update is a risk-reduction step that closes known attack paths.
How to check if you’re affected
Affected versions/models: iPhone and iPad devices still running iOS/iPadOS 18.4 through 18.7.x that have not installed 18.7.7 (including newer models capable of iOS 26 but currently kept on iOS 18).
- On device, open Settings → General → Software Update.
- Confirm your version is iOS 18.7.7 or iPadOS 18.7.7.
- If you stay on iOS 18, check for 18.7.7 under available updates and install it.
- Ensure Automatic Updates is enabled so security updates apply quickly.
- If your device cannot update, enable extra hardening (for example Lockdown Mode where supported) and avoid untrusted links/content.
Immediate defensive actions
- Update all managed iPhones/iPads to at least 18.7.7 where applicable.
- Re-check MDM compliance rules so out-of-date devices are flagged quickly.
- Prioritize high-risk users (admins, executives, journalists, legal/finance staff) for immediate patch verification.
Sources
- https://support.apple.com/en-il/126793 (primary source)
- https://support.apple.com/en-us/100100 (primary source)
- https://thehackernews.com/2026/04/apple-expands-ios-1877-update-to-more.html
Bottom line
If you are on iOS 18, don’t delay this one: install 18.7.7 now to reduce exposure to known web-attack chains linked to DarkSword.