acm-header
Sign In

Communications of the ACM

Home/News/Three iOS 0-Days Used to Infect iPhone/Full Text
ACM TechNews

Three iOS 0-Days Used to Infect iPhone

By Ars Technica
September 28, 2023
Comments
View as: Print Mobile App Share:
Warning of a system hack.

The previously unknown vulnerabilities, which Apple patched last week, were exploited in clickless attacks.

Credit: Getty Images

Google and researchers from Canada-based Citizen Lab, a research group at the University of Toronto’s Munk School, said Apple has corrected a series iOS zero-day flaws used to infect Egyptian presidential candidate Ahmed Eltantawy's iPhone with Predator spyware developed by commercial exploit vendor Cytrox.

The attackers leveraged three separate iOS bugs and relied on a packet inspection device from Egypt-based manufacturer Sandvine.

Citizen Lab said the PacketLogic device sitting on a cellular network in Egypt watched for links from the victim's phone to any HTTP site and, when identified, rerouted it to a site that injected the spyware.

From Ars Technica
View Full Article

 

Abstracts Copyright © 2023 SmithBucklin, Washington, D.C., USA

 

No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account