Russia

• DarkSword: the iOS exploit kit left in the open March 24, 2026

  DarkSword is a six-CVE iOS exploit kit disclosed March 18 by Google, iVerify, and Lookout -- targeting iOS 18.4-18.7 via watering hole attacks with no user interaction required. Apple has now patched all six zero-days in iOS 26.3. Between 220 and 270 million iPhones were estimated to be exposed. Update now.

• Signal's Encryption Is Fine. Your Device List Might Not Be. March 22, 2026

  FBI and CISA issued a joint advisory on March 20, 2026 warning that Russian Intelligence Services are compromising Signal, WhatsApp, and Telegram accounts via device-linking abuse and verification code phishing. The encryption is not broken -- the attack surface is account-level device management, not the cryptography.