Post
--
#谷歌 Binance ordinary users should immediately do the following (sorted by priority)
1. The most important step: immediately update iOS go to Settings → General → Software Update and upgrade the system to the latest version (currently recommended iOS 26.3 or 18.7.3+). Restart the phone after the update. This action can completely block DarkSword.
2. If you cannot update temporarily (for example, old models) immediately enable Lockdown Mode: Settings → Privacy & Security → Lockdown Mode → Enable. It will disable most web scripts and effectively block this type of zero-click attack (both Google and Apple recommend it).
3. Binance account exclusive protection (must do)
• Log in to Binance App → Security Center → Enable withdrawal whitelist (only allow addresses you added in advance to withdraw).
• Enable 2FA for all crypto accounts (Binance, other exchanges, wallets) (preferably use hardware keys or Authenticator App, do not use SMS).
• Enable anti-phishing code and login notifications.
4. Change daily habits immediately
• Do not click on any unknown links, do not use Safari to browse untrusted websites (recommended use Chrome + enable Google Safe Browsing).
• Check all App permissions: Settings → Privacy & Security → Turn off unnecessary “Location”, “Camera”, “Microphone”, “Local Network” permissions, especially for browsers and wallet-type Apps.
• Avoid directly operating large transfers on the phone in the short term, you can first transfer to hardware wallets (Ledger/Trezor) cold storage.
5. Post-check (optional, but recommended)
• Observe if there are any abnormal logins or small test transfers in Binance/wallet accounts.
• If you have previously used iOS 18.4-18.7 and often clicked on links randomly, consider restoring factory settings (after backing up) or directly switching to a new device/new system.
• The Binance App itself is fine, but it is recommended to update the App to the latest version.
In summary:
Complete these three things: update the system + open the whitelist + 2FA, and 99% of the risk will be eliminated. Although DarkSword is fierce, it only targets unpatched old systems. Apple and Google have already released patches, and Binance has also actively reminded everyone — it's still not too late to act now.
1. The most important step: immediately update iOS go to Settings → General → Software Update and upgrade the system to the latest version (currently recommended iOS 26.3 or 18.7.3+). Restart the phone after the update. This action can completely block DarkSword.
2. If you cannot update temporarily (for example, old models) immediately enable Lockdown Mode: Settings → Privacy & Security → Lockdown Mode → Enable. It will disable most web scripts and effectively block this type of zero-click attack (both Google and Apple recommend it).
3. Binance account exclusive protection (must do)
• Log in to Binance App → Security Center → Enable withdrawal whitelist (only allow addresses you added in advance to withdraw).
• Enable 2FA for all crypto accounts (Binance, other exchanges, wallets) (preferably use hardware keys or Authenticator App, do not use SMS).
• Enable anti-phishing code and login notifications.
4. Change daily habits immediately
• Do not click on any unknown links, do not use Safari to browse untrusted websites (recommended use Chrome + enable Google Safe Browsing).
• Check all App permissions: Settings → Privacy & Security → Turn off unnecessary “Location”, “Camera”, “Microphone”, “Local Network” permissions, especially for browsers and wallet-type Apps.
• Avoid directly operating large transfers on the phone in the short term, you can first transfer to hardware wallets (Ledger/Trezor) cold storage.
5. Post-check (optional, but recommended)
• Observe if there are any abnormal logins or small test transfers in Binance/wallet accounts.
• If you have previously used iOS 18.4-18.7 and often clicked on links randomly, consider restoring factory settings (after backing up) or directly switching to a new device/new system.
• The Binance App itself is fine, but it is recommended to update the App to the latest version.
In summary:
Complete these three things: update the system + open the whitelist + 2FA, and 99% of the risk will be eliminated. Although DarkSword is fierce, it only targets unpatched old systems. Apple and Google have already released patches, and Binance has also actively reminded everyone — it's still not too late to act now.
Disclaimer: Includes third-party opinions. No financial advice. May include sponsored content. See T&Cs.