Apple came yesterday with a very important security for iOS. This provides the operating system version number 9.3.5 and eliminates three vulnerabilities that should have been utilized for covert installation of spyware allegedly developed by Israeli NSO Group.
The vulnerabilities should have been discovered after a famous human rights activist Ahmed Mansoor from United Arab Emirates, received an SMS on his iPhone 6. in the SMS he promised new secrets about the torture of prisoners in the Emirates prisons. This should he be accessed by clicking on a link.
Instead of clicking, chose Mansoor to contact security researchers at Citizen Lab.
See also: Apple promises up to 200 $ 000 to anyone who can hack iPhone
NSO Group
– We recognize the links as part of an assault infrastructure associated NSO Group, an Israel-based kyberkrigselskap selling Pegasus, one spyware product for “lawful interception” which is accessible only to officials to Citizen Lab in a blog post.
in partnership with Lookout security, to review the whole thing in a separate blog post, the security researchers at Citizen Lab have found that the links led to a chain with attack code for the onset of zero-day vulnerabilities which would have led to remote jailbreaking the iPhone Mansoor. The companies have given the three nulldagssårbarhetene name Trident.
Digital pocket spy
If the attack had been carried out, would phone functioned as a digital spy in your pocket to Mansoor. According to Citizen Lab would it be able to use the camera and microphone on the device and thus capture voice, messages sent via various lynmeldingsprogrammer and position data.
According to Lookout leads one of the vulnerabilities to a leak of information that makes it possible for attackers to calculated kernel memory location. Another of the vulnerabilities causes corruption of kernel memory, which allows for hidden jailbreaking and installing software. The latest vulnerability exists in WebKit component of Safari. It allows an attacker to compromise the device now user clicks on a link.
Did you read this? Not only Siri. Now also Turi been bought by Apple
No comments:
Post a Comment