CitizenLab report reveals a new vulnerability in Apple devices (iPhone, iPad, Apple Watches, Mac...) Zero-day vulnerability.
Zero-Day attacks are a malicious way of exploiting a vulnerability in a system (computers, phones and other systems)
iPhone vulnerabilities
The vulnerability has been exploited by NSO (The developer of the famous Pegasus software) in order to penetrate a group of users of iPhones or Apple devices in general!
The vulnerability was revealed last Monday after an analysis of an iPhone of a Saudi activist. After the analysis, it was discovered that the victim's device was infected with the vulnerability. This vulnerability sends some files to keep the phone unlocked and then tries to install the Israeli Pegasus software . This software is used for spying.
The victim will not feel any suspicious activity because he does not need to click on files or links in order to install this software . So this type is called loopholes because you don't need to click on anything (links, files, etc.).
After installing Pegasus
Pegasus gave users (attacker) access to calls, messages, photos and files, and allowed them to secretly turn on targeted phone cameras and microphones.
Comments
Post a Comment