Kaspersky, a cybersecurity and anti-virus firm, has discovered a new cyberattack threat that targets iPhone models running older versions of iOS via the iMessage application. The company found the malware when it was monitoring its own Wi-Fi network for mobile devices. The virus infects the phone via a received iMessage containing a malicious attachment. The threat does not require the iPhone user to do anything and utilises iOS vulnerability to install spyware that takes complete control of the device and user data.
Details of the Attack
Kaspersky’s report states that the malicious attachment sent via iMessage executes a code without the need for any action from the user. The malicious code then runs a set of commands for the collection of private user data, including microphone recordings, photos from instant messengers, geolocation, and other data. The spyware then transmits the information to remote servers. The cybersecurity firm has dubbed the cyberattack threat as “Operation Triangulation.”
Kaspersky has said that the malware was found on the iPhones of dozens of employees and could target other iPhone users as well. The threat has been neutralised, and details of the vulnerability have been sent to Apple. The CEO also noted that disabling the iMessage service would prevent vulnerable iOS devices from the attack.
Devices Affected
The company has said that after the malware is successfully installed on the device, the initial text and the accompanying exploit in the iMessage attachment are deleted. Kaspersky’s report said the attack was ongoing, and iOS 15.7 was the most recent version among the devices that were successfully targeted. iPhone models running iOS 16 appear to be safe from the threat, but Kaspersky did mention in the comments section of its report that they could not guarantee that other iOS versions were safe.
Apple’s Response
Kaspersky has released tools for users to check if their device was infected. In February, Apple released updates that fixed major vulnerabilities with iOS 16.3 and macOS 13.2 for supported iPhone, iPad and Mac models. At the time, Apple credited the researchers who found the flaws that allowed a remote user to bypass protections put in place by Apple and gain access to a user’s personal data as well as their camera, microphone, and call history.
Kaspersky has discovered a new cyberattack that targets iPhone models running older versions of iOS via the iMessage application. The malware infects the phone via a received iMessage containing a malicious attachment and utilises iOS vulnerability to install spyware that takes complete control of the device and user data. The malicious code runs a set of commands for the collection of private user data, including microphone recordings, photos from instant messengers, geolocation, and other data. The spyware then transmits the information to remote servers. The attack was ongoing, and iOS 15.7 was the most recent version among the devices that were successfully targeted. iPhone models running iOS 16 appear to be safe from the threat, but Kaspersky could not guarantee that other iOS versions were safe.
Leave a Reply