The DarkSword exploit kit chains six iOS vulnerabilities (CVSS 9.5 for the highest individual CVE) into a full-device compromise path affecting iPhone XR through iPhone 16 series, iPhone SE (2nd and 3rd gen), and multiple iPad generations running iOS 18.4–18.7.6. Three confirmed threat clusters are actively using this chain, including a commercial surveillance vendor, a suspected Russian espionage group, and a financially motivated actor; the kit’s public availability on GitHub has lowered the exploitation barrier significantly. Organizations with managed iOS fleets should push iOS 18.7.7 via MDM immediately and treat any device that cannot be patched within 24 hours as potentially compromised.