Home of fruit fans, ten years of professional Apple mobile phone technology research!An Apple expert by your side
With the "iOS" system, the iPhone is not only far ahead of its competitors in terms of smoothness, but also one of the best smartphone brands in terms of security.
However, even if the iPhone is safe, we can often see news about hackers because of the security vulnerabilities of iOS. Recently, three security researchers at Kaspersky revealed that your iPhone could suffer the most sophisticated hacking attack in history.
At the Chaos Communications Conference held a few days ago, Kaspersky security officials revealed an extremely advanced iMessage vulnerability they had discovered, which they named "Operation Triangulation", a zero-click attack that can take full control of the target device without any user interaction.
In simple terms,An attacker can send a malicious attachment via iMessage, and the application will not show any signs to the user when processing the attachment. The malicious file exploits a remote execution vulnerability called CVE-2023-41990, which could execute arbitrary actions when a user opens an iMessage, eventually gaining the highest usage rights of the iPhone to proceed to the next step, or even install spyware
While restarting the phone can close the vulnerability, an attacker can reopen it by simply sending another malicious attachment via iMessage, without the need for the user to click on it.
The attack chain involved four zero-day vulnerabilities and multiple complex technical means, and Kaspersky researchers said it was the "most complex attack chain" they had ever seen. The sophistication and technical level of this attack chain far exceeded any attack they had seen before.
They believe that this attack requires a lot of resources and expertise, as well as in-depth knowledge of the iOS system. "I can't imagine how this vulnerability was discovered by accident," he said, arguing that it is almost impossible for anyone other than Apple and Arm to know about it.
It is reported that the "operation triangulation" started in 2019 and lasted until December 2022, until Apple released iOS 16Version 2, which fixes related bugs. During this time, this attack may have affected millions of iMessage users, including politicians, journalists, human rights activists, and more.
Kaspersky researchers suggest that all iMessage users should upgrade to iOS 16 as soon as possibleversion 2 or higher to protect against the effects of this attack. They also suggest that users should regularly check their devices for unusual behavior or programs.
Where there is fruit powder, there is a home of fruit powder, learn the skills of using apples, and learn the latest apple information, please pay attention to: home of fruit powder.