October 26, 2023 at 05:22PM Apple released a security update to fix a vulnerability, tracked as CVE-2023-32434, that has already been exploited by cyber snoops. This flaw allowed the execution of arbitrary code with kernel privileges. It is the second patch issued by Apple to address this vulnerability. Kaspersky researchers discovered the bug and reported … Read more
October 24, 2023 at 03:03PM Kaspersky has released a report detailing the iOS zero-click attacks it suffered. Dubbed ‘Operation Triangulation’, the attacks used malicious iMessage attachments to exploit a zero-day vulnerability and deploy spyware named TriangleDB. The attackers implemented stealth techniques to avoid detection, including using two validators to collect device information and ensure the … Read more
October 24, 2023 at 05:45AM The TriangleDB implant used in Operation Triangulation targets Apple iOS devices. It includes modules to record audio, steal data from apps, and determine the victim’s location. The attack utilizes zero-click exploits through iMessage attachments and employs various validators to avoid being detected. The identity of the threat actor remains unknown, … Read more