Kaspersky uncovers malware targeting iPhones running iOS 15.7 and below

Share post:

Kaspersky has uncovered a sophisticated malware campaign specifically designed to infect iPhones running up to iOS 15.7 through the iMessage platform.

Kaspersky found suspicious activities on iOS devices but couldn’t examine them directly. They used offline backups to analyze the devices with mvt-ios. They discovered that the attack happens when an iPhone gets an iMessage with an attachment containing an exploit.

This exploit is designed to trigger a system vulnerability without needing user interaction, enabling the execution of harmful code. If successful, the exploit fetches more exploits from a Command and Control server to gain higher privileges on the compromised device.

Following the exploitation, the attacker obtains complete control of the device and user data by downloading an APT platform from the Command and Control server. The assault deletes the initial message and exploit attachment to stay undetected.

Since the malicious toolkit utilized is not persistent, its efficacy may be restricted by iOS limitations. However, reinfection is possible if the device is restarted and targeted again.

Kaspersky warns that the campaign has already impacted devices running iOS versions up to 15.7 as of June 2023. However, it remains uncertain whether the attackers are exploiting a recently discovered zero-day vulnerability in older iOS versions.

The sources for this piece include an article in AppleInsider.

Featured Tech Jobs

SUBSCRIBE NOW

Related articles

Pilot cybersecurity training program for women to recruit third cohort

The program is overseen by the Information and Community Technology Council (ICTC) and funded by Microsoft and the federal

Cyber Security Today, March 6, 2024 – VMware and Apple rush out security updates, a new ScreenConnect malware is found, and more

This episode reports on a survey of IT pros on insider attacks, US sanctions on a group that markets commercial spyware

Canada’s anti-money laundering agency hit by a cyber attack

FINTRAC says it has been managing the attack for the pas

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways