Kaspersky uncovers malware targeting iPhones running iOS 15.7 and below

Share post:

Kaspersky has uncovered a sophisticated malware campaign specifically designed to infect iPhones running up to iOS 15.7 through the iMessage platform.

Kaspersky found suspicious activities on iOS devices but couldn’t examine them directly. They used offline backups to analyze the devices with mvt-ios. They discovered that the attack happens when an iPhone gets an iMessage with an attachment containing an exploit.

This exploit is designed to trigger a system vulnerability without needing user interaction, enabling the execution of harmful code. If successful, the exploit fetches more exploits from a Command and Control server to gain higher privileges on the compromised device.

Following the exploitation, the attacker obtains complete control of the device and user data by downloading an APT platform from the Command and Control server. The assault deletes the initial message and exploit attachment to stay undetected.

Since the malicious toolkit utilized is not persistent, its efficacy may be restricted by iOS limitations. However, reinfection is possible if the device is restarted and targeted again.

Kaspersky warns that the campaign has already impacted devices running iOS versions up to 15.7 as of June 2023. However, it remains uncertain whether the attackers are exploiting a recently discovered zero-day vulnerability in older iOS versions.

The sources for this piece include an article in AppleInsider.

SUBSCRIBE NOW

Related articles

North Korean Job Scam Targeting IT Job Seekers

North Korea’s Lazarus advanced persistent threat (APT) group has launched a sophisticated campaign, “Operation 99,” targeting freelance software...

Hackers Exploit FastHTTP in High-Speed Microsoft 365 Attacks

Threat actors are employing the FastHTTP Go library to launch high-speed brute-force password attacks on Microsoft 365 accounts...

YouTubers Targeted As Cyberattackers Hide Infostealers in YouTube Comments, Google Search Results

Attackers have found a new way to infect people seeking pirated or cracked software: planting malicious download links...

New macOS Malware Exploits Apple’s Security Features to Stay Hidden and Steal User Data

A newly discovered variant of the Banshee macOS Stealer malware is putting 100 million Apple users at risk...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways