Apple issues emergency patch for exploited iOS zero-days

By on
Apple issues emergency patch for exploited iOS zero-days

‘Trident’ vulnerability used to attack media and activists.

Apple has issued iOS version 9.3.5 to plug three vulnerabilities researchers say were used to attack New York Times journalists and to track down activists and dissidents.

The vulnerabilities are in the iOS kernel and in the WebKit rendering engine, and can cause memory disclosure and corruption. Together, they could be used to execute arbitrary code with elevated system privileges. 

Security vendor Lookout, which has been working with researchers from the University of Toronto’s Citizen Lab, has linked the three vulnerabilities it dubbed ‘Trident’ to commercial spyware called Pegasus.

Pegasus is developed by an American-owned NSO Group in Israel, which specialises in zero-days, obfuscation, encryption and kernel level exploitation.

Pegasus delivers Trident in a multi-stage attack, Lookout said.

“The attack sequence, boiled down, is a classic phishing scheme: send text message, open web browser, load page, exploit vulnerabilities, install persistent software to gather information.

This, however, “happens invisibly and silently, such that victims do not know they’ve been compromised,” Lookout and Citizen Lab researchers wrote.

Once a device is compromised, attackers are able to access messages, voice and video calls, emails, log files and other data from apps including Skype, Gmail, Facebook, Apple FaceTime and Calendar, Viber and others.

Citizen Lab said they found links between NSO Group’s infrastructure and an attack on United Arab Emirates human rights activist Ahmed Mansoor.

Mansoor received text messages promising details on detainees tortured in UAE jails, asking him to click on links.

He instead sent the messages to Citizen Lab researchers, who were able to trace the content back to NSO Group. They worked with Lookout to unearth a chain of zero-day exploits that could have been used to disable iOS security features and install malware and spyware.

Trident is also believed to have been used in attacks against The New York Times and other US media bureaux in Russia. 

The vulnerabilities have also been patched in Apple’s iOS 10 beta, the company told US media.

 

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © iTnews.com.au . All rights reserved.
Tags:
apple security spyware trident zero day

Sponsored Whitepapers

How Security as Code changes development and deployment for the cloud
How Security as Code changes development and deployment for the cloud
Tackle new ITSM priorities with this seven-step Micro Focus guide
Tackle new ITSM priorities with this seven-step Micro Focus guide
Tomago Aluminium improves SAP environment performance, security with Red Hat and IBM
Tomago Aluminium improves SAP environment performance, security with Red Hat and IBM
Future of work: Support your distributed HR workforce with digital document processes
Future of work: Support your distributed HR workforce with digital document processes
Develop a resiliency strategy that integrates risk analysis & continuity management
Develop a resiliency strategy that integrates risk analysis & continuity management

Events

Most Read Articles

Macquarie Bank looks to break free of IaaS

Macquarie Bank looks to break free of IaaS
Telstra-led consortium to build out NSW's digital twin

Telstra-led consortium to build out NSW's digital twin
Adobe scores $32m myGov software deal

Adobe scores $32m myGov software deal
CBA brings in tool to help verify $1bn tech budget is well-spent

CBA brings in tool to help verify $1bn tech budget is well-spent

Log In

Email:
Password:
  |  Forgot your password?