530
4-year campaign backdoored iPhones using possibly the most advanced exploit ever (arstechnica.com)
submitted 6 months ago by return2ozma@lemmy.world to c/technology@lemmy.world
59 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[-] lemann@lemmy.dbzer0.com 157 points 6 months ago

Wow, this is a very complex exploit, involving bits of iMessage and an undocumented CPU feature that allowed the attacker to evade hardware memory protection. From what I can see, Lockdown mode would have prevented this. The attacker is ridiculously skilled regardless

Exerpts from the article missing from the bot summary:

The mass backdooring campaign, which according to Russian officials also infected the iPhones of thousands of people working inside diplomatic missions and embassies in Russia, according to Russian government officials, came to light in June. Over a span of at least four years, Kaspersky said, the infections were delivered in iMessage texts that installed malware through a complex exploit chain without requiring the receiver to take any action.

With that, the devices were infected with full-featured spyware that, among other things, transmitted microphone recordings, photos, geolocation, and other sensitive data to attacker-controlled servers. Although infections didn’t survive a reboot, the unknown attackers kept their campaign alive simply by sending devices a new malicious iMessage text shortly after devices were restarted.

The most intriguing new detail is the targeting of the [...] hardware feature [...]. A zero-day in the feature allowed the attackers to bypass advanced hardware-based memory protections designed to safeguard device system integrity even after an attacker gained the ability to tamper with memory of the underlying kernel.

[-] AnneBonny@lemmy.dbzer0.com 131 points 6 months ago

someone was made fun of one too many times about having green bubbles in imessage

[-] doppelgangmember@lemmy.world 53 points 6 months ago

The true villain origin story

[-] gregorum@lemm.ee 5 points 6 months ago

i'm a bit of a texter myself, you know...

[-] crsu@lemmy.world 1 points 6 months ago

And it was all Apple's fault for creating the problem and Batman never stopped them

[-] GlitzyArmrest@lemmy.world 34 points 6 months ago

Seems like the definition of advanced persistent threat.

[-] psud@lemmy.world 27 points 6 months ago

It isn't persistent over a reboot, but the tested devices received new corrupted iMessages immediately after reboot

[-] GlitzyArmrest@lemmy.world 26 points 6 months ago* (last edited 6 months ago)

Persistent in APT isn't referring to the malware itself, but rather the threat actor. I meant that this seems like a textbook APT actor.

[-] elias_griffin@lemmy.world -1 points 6 months ago

You know what else was also super sophisticated, chained, and confident enough in it's APT to not be persistent across reboots? DOUBLEPULSAR.

[-] corsicanguppy@lemmy.ca -1 points 6 months ago

it’s

You sure?

[-] MaxVoltage@lemmy.world 10 points 6 months ago

Reminded me restart all my devices

[-] seang96@spgrn.com 30 points 6 months ago

With that many exploits being used I wouldn't be surprised to see it is a group probably government sponsored. They love iMessage exploits as original attack vectors too.

[-] psud@lemmy.world 12 points 6 months ago

Russian authorities say it was the Americans trying to spy on other NATO nations, Israel, and Ukraine. America spying on Russia's enemies.

[-] sukhmel@programming.dev 1 points 6 months ago* (last edited 6 months ago)

Well, I may be under the wrong impression but it occurred to me that the US govt likes to spy on everyone, friends and foes and the US citizens, too

Edit: punctuation

[-] Tautvydaxx@lemmy.world 6 points 6 months ago

Documentary about the pheonix software explains a lot about who used this kind of virus, mainly political figures and govermants to spy on other politicans and jornalists. The imessage exploit was known for a few years but nobody knew how the file installed itself on the device, so there was no way to figure out how to protect the device.

[-] dependencyinjection@discuss.tchncs.de 3 points 6 months ago

Which documentary?

this post was submitted on 27 Dec 2023
530 points (98.2% liked)

Technology

55606 readers
2492 users here now

This is a most excellent place for technology news and articles.

Our Rules

  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago
MODERATORS
L3s@lemmy.world
enu@lemm.ee
fry@fry.gs
L3s@fry.gs
enu@lemmy.world
L4s@fry.gs
L4s@lemmy.world