Orcas, Trombones, and Total Security: iOS 26.4 Is Here and You Should Update Now

The latest iPhone operating system, iOS 26.4, is now available for installation by all. We’ve been following the iOS 26.4 beta cycle pretty closely — through iOS 26.4 Beta 1, iOS 26.4 Beta 2, and iOS 26.4 Beta 3 if you want to review the road to the near-stable version — culminating in last week’s iOS 26.4 RC (release candidate), which is effectively the final “pre-release” build.

As expected, today’s public release, which now can — and really should — be downloadedby everyone, includes better keyboard accuracy while typing quickly, new Emoji, Apple Music updates, and Accessibility features to further control bright effects. It also improves the Reduce Motion Accessibility setting for more effective reduction of Liquid Glass animations.

This Limited-Time Microsoft Office Deal Gets You Lifetime Access for Just $39

Sick and tired of subscriptions? Get a lifetime license for Microsoft Office Home and Business 2021 at a great price!

We consistently recommend updating to the latest iOS, not just for the fun and useful new settings and features, but for security purposes. As usual, Apple’s information page about today’s iOS 26.4 release includes the standard language about “bug fixes and security updates.” Many of us probably gloss over this part of the description and focus on the more exciting new additions, but there are actually 36 different vulnerabilities that are specifically patched in today’s iOS 26.4 update.

However, these are even more critical in today’s update with the dangerous digital landscape we’re living in.

A few days ago we urged those iPhone users still using iOS 13 or 14 to make the leap to the latest version their device supports — which is at least iOS 15 for every iPhone capable of running those older versions. In a rare move, Apple published a security document on March 19 urging iPhone owners to update their devices to protect against web-based attacks that specifically target outdated iOS versions.

We warned about the new “DarkSword” attack that spreads malware on iPhones by exploiting vulnerabilities in iOS. Google’s research suspects “…commercial surveillance vendors and suspected state-sponsored actors utilizing DarkSword in distinct campaigns.” Whether or not DarkSword originated by a government remains unknown.

DarkSword code also leaked to GitHub today. That’s a platform developers use to host, manage, and collaborate on projects, and makes the dangerous software more widely available to pretty any “script kiddie” wannabe cybercrook who knows how to host a webpage. Already, one developer claims the software can be used to hack iOS 15 to iOS 26.0.1. This is much broader than the targeting of iOS 18.4 to 18.7 as originally suspected.

This type of attack is particularly sinister because it works as a “near zero-click” exploit. This means all a user has to do is visit a compromised website in Safari to become infected. Once installed, DarkSword can be used for anything from stealing data like texts, iCloud content, and even cryptocurrency wallet information. It’s also capable of removing itself to avoid detection. It appears as if Apple has taken every step possible to protect iPhone users. However, threats evolve and it appears DarkSword is no different. We should all do our part and update our iPhones.