Kaspersky Has Released New Tool To Scan iPhones

Back to Giveaway of the Day

Giveaway of the Day Forums » Technical notes

Kaspersky Has Released New Tool To Scan iPhones

(2 posts) (1 voice)

Started 1 year ago by mikiem2
Latest reply from mikiem2

mikiem2
Moderator

bleepingcomputer[.]com/news/security/new-tool-scans-iphones-for-triangulation-malware-infection/

Kaspersky found that the iPhones of several employees had never before seen malware, and started investigating. They say the malware is zero click -- the phone's owner/user does not have to do anything, like click a bad link or download. iOS however can only be analyzed [scanned] as a backup, so the scanning procedure is more involved that just running an app on the phone.

Typically, espionage-driven malware distribution campaigns like "Operation Triangulation" target specific individuals or companies rather than the wider population, so most people using the checker should get a clean result.

However, Kaspersky's tool could be handy for people holding critical roles in important organizations, individuals at heightened risk of state-sponsored espionage, and those working in companies or services that act as information hubs.

Currently, the exact origin of the malware and the orchestrators of Operation Triangulation remain unknown; hence, the targeting scope and victimology have not been determined.

Posted 1 year ago #
mikiem2
Moderator

bleepingcomputer[.]com/news/apple/apple-fixes-zero-days-used-to-deploy-triangulation-spyware-via-imessage/

Apple addressed three new zero-day vulnerabilities exploited in attacks installing Triangulation spyware on iPhones via iMessage zero-click exploits.

"Apple is aware of a report that this issue may have been actively exploited against versions of iOS released before iOS 15.7," the company says when describing Kernel and WebKit vulnerabilities tracked as CVE-2023-32434 and CVE-2023-32435.

The two security flaws were found and reported by Kaspersky security researchers Georgy Kucherin, Leonid Bezvershenko, and Boris Larin.

Apple also patched today a WebKit zero-day vulnerability (CVE-2023-32439) reported by an anonymous researcher that can let attackers gain arbitrary code execution on unpatched devices by exploiting a type confusion issue.

The company addressed the three zero-days in macOS Ventura 13.4.1, macOS Monterey 12.6.7, macOS Big Sur 11.7.8, iOS 16.5.1 and iPadOS 16.5.1, iOS 15.7.7 and iPadOS 15.7.7, watchOS 9.5.2, and watchOS 8.8.1 with improved checks, input validation, and state management.

The list of affected devices is quite extensive, as the zero-day affects older and newer models, and it includes:

iPhone 8 and later, iPad Pro (all models), iPad Air 3rd generation and later, iPad 5th generation and later, iPad mini 5th generation and later
iPhone 6s (all models), iPhone 7 (all models), iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation), and iPod touch (7th generation)
Macs running macOS Big Sur, Monterey, and Ventura
Apple Watch Series 4 and later, Apple Watch Series 3, Series 4, Series 5, Series 6, Series 7, and SE

Posted 1 year ago #

RSS feed for this topic

Reply

You must log in to post.