this post was submitted on 01 Jan 2024
19 points (100.0% liked)

Netsec

694 readers
2 users here now

netsec is a community-curated aggregator of technical information security content. Our mission is to extract signal from the noise — to provide value to security practitioners, students, researchers, and hackers everywhere. ‎

Rules

  1. Don't do unto others what you don't want done unto you.
  2. No Porn, Gore, or NSFW content. Instant Ban.
  3. No Spamming, Trolling or Unsolicited Ads. Instant Ban.
  4. Stay on topic in a community. Please reach out to an admin to create a new community.

founded 2 years ago
MODERATORS
[email protected]
19
Operation Triangulation: What You Get When Attacking iPhones of Security Researchers (media.ccc.de)
submitted 8 months ago* (last edited 8 months ago) by [email protected] to c/[email protected]
1 comments fedilink hide all child comments
 

Imagine discovering a zero-click attack targeting Apple mobile devices of your colleagues and managing to capture all the stages of the attack. That’s exactly what happened to us! This led to the fixing of four zero-day vulnerabilities and discovering of a previously unknown and highly sophisticated spyware that had been around for years without anyone noticing. We call it Operation Triangulation. We've been teasing this story for almost six months, while thoroughly analyzing every stage of the attack. Now, for the first time, we're ready to tell you all about it. This is the story of the most sophisticated attack chain and spyware ever discovered by Kaspersky.

In this presentation, we will share:

  • How we managed to discover and capture all stages of a zero-click attack on iOS, despite the attackers’ efforts to hide and protect it,
  • a comprehensive analysis of the entire attack chain, which exploited five vulnerabilities, including four zero-days
  • the capabilities of the malware that transforms your phone into the ultimate surveillance tool,
  • and the links to previously known malware we were able to find.
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 2 points 8 months ago

Just made a post about this in Privacy. Upvote and comment here to spread the word.