Interessante 2teilige Doku über staatliches #hacking / #cracking, #Russland, #Kaspersky, #Lettland, #OperationTriangulation

https://share.deutschlandradio.de/dlf-audiothek-audio-teilen.html?audio_id=dira_4F548C9E4ADB11F07B69B883034C2FA0

Wieder mal eine #Hörempfehlung im Bereich #Podcast: Die Podcast-Reihe #DarkAgent präsentiert die lange Recherche mehrere Journalist:innen zu #OperationTriangulation, einen der umfassendsten und mysteriösesten Angriffe auf Smartphones bzw. iPhones – auch bekannt aus diesem Vortrag beim #37c3: https://media.ccc.de/v/37c3-11859-operation_triangulation_what_you_get_when_attack_iphones_of_researchers
Merkwürdigerweise will #Kaspersky nicht mehr so gern, dass ihre Mitarbeiter:innen über das Thema sprechen. 👀 Was genau hinter dem Angriff steckt, ist unklar.

Bisher zwei Folgen verfügbar, erst ab Montag auch frei per #RSS. jeden Montag eine neue Folge.
https://www.deutschlandfunk.de/dark-avenger-100.html

#Überwachung #Privacy #Radio #Deutschlandfunk

Group-IB explains precautionary and investigation measures to detect Pegasus spyware Operation Triangulation, Predator spyware, and others on an iOS device. Indicators are from historical reporting. 🔗 https://www.group-ib.com/blog/pegasus-spyware/

#Pegasus #spyware #Predator #iOS #OperationTriangulation

Having studied what @Kaspersky found when they dismantled the malware known as #operationtriangulation, I believe it is clear that Apple designed functionality onto the SoC from Bionic A12 to A16 for a purpose.

There are links to the fanstatic forensic work by Kaspersky researchers in my opinion piece, kudos to them for exploring all avenues to get answers.

This is possibly the best malware every chained together and Apple would never have intended the feature - burned into their chips - to be abused like this.

https://www.ciso.pm/operation-triangulation/

Most Sophisticated iPhone Hack Ever Exploited Apple's Hidden Hardware Feature

The starting point of the zero-click attack is an iMessage bearing a malicious attachment, which is automatically processed sans any user interaction to ultimately obtain elevated permissions and deploy a spyware module.

#apple #Iphone #ios #imessage #zeroday #zeroclick #OperationTriangulation #spyware #malware #security #cybersecurity #infosec #hackers #hacking #hacked

https://thehackernews.com/2023/12/most-sophisticated-iphone-hack-ever.html

#OperationTriangulation > Ein Detail im bisher ausgeklügeltsten Angriff auf iPhones sorgt nun für schwere Vorwürfe gegen Apple. Geheime Register erlaubten das Umschiffen zentraler Sicherheitsfunktionen https://www.derstandard.at/story/3000000201983/aufregung-um-vermeintliche-hintertuer-in-apple-chips-fuer-iphones-und-macs

# 37C3 - Operation Triangulation: What You Get When Attack iPhones of Researchers
https://www.youtube.com/watch?v=1f6YyH62jFE

Courtesy of Kaspersky:
Our experts discovered a flaw in Apple's system, a key factor in the recent #spyware attacks targeting #iPhone users, known as #OperationTriangulation.

This flaw enables attackers to bypass the iPhone's hardware-based memory protection. Full report ⇒ https://kas.pr/t3s6

Covered in #securitynow 995 I knew I had to watch this talk I did not catch at the venue.
https://media.ccc.de/v/37c3-11859-operation_triangulation_what_you_get_when_attack_iphones_of_researchers

Glad I listened to @SGgrc beforehand as he put it into more digestable language and a sober context.
The talk starts with low-level code deepdives out of the gate. Truetype fonts are turing complete?!

Thank you @oct0xor kucher1n bzvr_

#operationtriangulation #37c3