all InfoSec news
New iPhone Exploit Uses Four Zero-Days
Schneier on Security www.schneier.com
Kaspersky researchers are detailing “an attack that over four years backdoored dozens if not thousands of iPhones, many of which belonged to employees of Moscow-based security firm Kaspersky.” It’s a zero-click exploit that makes use of four iPhone zero-days.
The most intriguing new detail is the targeting of the heretofore-unknown hardware feature, which proved to be pivotal to the Operation Triangulation campaign. A zero-day in the feature allowed the attackers to bypass advanced hardware-based memory protections designed to safeguard device …
attack backdoors click employees exploit exploits feature hardware iphone iphones kaspersky moscow new iphone researchers security targeting zero-click zero-click exploit zero-day zero-days