Tag: iphone | Page 5

Zero-Click iPhone Exploit Drops Spyware on Exiled Russian Journalist

September 14, 2023/in Internet Security

A report this week about Pegasus spyware showing up on an iPhone belonging to award-winning Russian journalist Galina Timchenko has highlighted again the seemingly myriad ways that government and law enforcement agencies appear to have to deliver the odious surveillance tool on target devices.

Timchenko is an exiled Russian investigative journalist and co-founder of Meduza, a Russian- and English-language news site headquartered in Riga, Latvia. On June 22, Apple sent Timchenko a threat notification that warned her that her device is likely the target of a state-sponsored attack. Apple earlier this year rolled out the spyware threat notifications, which are designed specifically to assist users that the company determines are being individually targeted because of what they do.

Targeted for Spying

Meduza’s technical director reached out to the University of Toronto’s Citizen Lab for help understanding what the alert might have been about. Researchers at Citizen Lab, who have earned a reputation over the years for their ability to conduct investigations into incidents of digital espionage, analyzed forensics artifacts from Timchenko’s phone and quickly determined that someone had installed Pegasus on it in February.

Citizen Lab and Access Now, a nonprofit that advocates for human rights in the digital age, collaborated on the investigation of the incident and released two separate reports on it this week.

“We believe the infection could have lasted from days up to weeks after the initial exploitation,” Citizen Lab said. “The infection was conducted via a zero-click exploit, and forensic traces lead us to assess with moderate confidence that it was achieved via the PWNYOURHOME exploit targeting Apple’s HomeKit and iMessage.” Neither Citizen Lab or Access Now attributed the attack to any specific nation-state actor.

PWNYOURHOME is one of three iOS 15 and iOS 16 zero-click exploits that Citizen Lab previously determined NSO Group’s clients to have used in 2022 to drop Pegasus on target iPhones. The two-phase zero-click exploit first targets the HomeKit smart home functionality built into iPhones, and then uses the iMessage process to essentially breach device protections and enable Pegasus…

Source…

Week 36 in review: Oppo A38 announced, Moto G54 goes official, more iPhone 15 rumors

September 10, 2023/in Mobile Security

10 September 2023

The first week of September brought more to the rumor mill for the usual suspects. The iPhone 15 series will offer camera upgrades across the board with the 15 and 15 Plus getting all-new 48MP Sony sensors with a stacked design and an f/1.6 aperture. The second shooter on the back will be the same old 12MP, f/2.4 ultrawide. We prepared a more detailed what to expect article which you can check out here.

The 15 Pro will retain the 48MP main shooter from its predecessor but it’s rumored to be joined by an improved 13MP f/2.4 ultrawide lens. The 15 Pro Max will get the biggest update with a new 12.7MP periscope lens (1/1.9″ sensor; f/2.8 aperture) with 5x optical zoom. We also got to see dummy units for all four of the iPhone 15 series devices confirming Dynamic Islands on the non-Pros and the new Action Buttons on the Pro models.

Google showcased the Pixel 8 Pro in full glory on its own website in detailed render form. The flagship Pixel will be available in Licorice, Porcelain and Sky colors and we got more confirmation of the previously leaked design. Google is also rumored to release Android 14 at the Pixel 8 launch event on October 4.

Samsung announced Thom Browne Editions of its Galaxy Z Fold5 and Watch6. The Samsung Galaxy S24 is rumored to get a titanium frame, upgraded 200MP main and 50MP telephoto cameras and a Snapdragon 8 Gen 3 chip.

Oppo launched its A38 midranger with a Helio G85 chipset, 50MP main cam, 90Hz IPS LCD and a 5,000 mAh battery with 33W fast charging. The device comes in Black and Gold colors but we still don’t have any pricing and availability details.

Motorola launched the G54 with two version – one for China and a slightly different model for India. Both Motos feature 6.5” IPS LCDs (120Hz), MediaTek’s Dimensity 7020 chipset and 50MP main cams. The Indian model brings a larger 6,000 mAh battery with 33W charging while the Chinese version relies on a 5,000 mAh cell with 15W charging.

Xiaomi will launch its 13T lineup on September 26 and we got confirmation both the 13T and 13T Pro will receive 4 Android updates and 5 years of security patches. Motorola will announce its Edge 40 Neo on September 14.

Here are all the…

Source…

iPhone users urged to install new software immediately after powerful security hole found

September 9, 2023/in Internet Security

Apple iPhone Security Update (Copyright 2022 The Associated Press. All rights reserved)

iPhone users have been urged to download a new update immediately.

The update was pushed out by Apple to iPhones and iPads after a major security vulnerability was found in the devices.

Patching up that hole with the new software update should keep those devices safe. But without it, attackers could break into an iPhone and spy on its user.

The security issue was found by researchers at the University of Toronto’s Citizen Lab. They said the problem was being “actively exploited” by hackers, and that all users should update immediately.

They were doing so by delivering commercial software called Pegasus, which is made and sold by Israeli company the NSO Group. That software is expensive and targeted, and has primarily been used on specific activists, journalists and politcians, who are likely to know if they are at particular risk of an attack.

The latest attack was used on the iPhone of a member of staff at a US civil society organisation with international offices, Citizen Lab said. It named the new exploit BLASTPASS and said that it did not even require users to click anything on their device.

The NSO Group and Apple have in recent years been engaged in a long-running fight to find and fix security flaws that could allow for the delivery of that software.

Recent iPhone updates brought a new “Lockdown Mode” that places extra restrictions on the device in an attempt to close up potential security flaws. That includes not downloading images that could include spyware, for instance – which is how attackers deliver the hack in this most recent scare.

Downloading the new update is simple. It is done through the Settings app on iPhones and iPads, by clicking the “general” and then “software update” options – that will check for any new updates, and offer the option to download it.

Phones may eventually automatically install the new operating system, which could mean that no download shows up in that screen. Users can check if they have already updated to the new, patched operating system by clicking the “about” option in the general settings, and looking whether they have the…

Source…

How to Protect Your iPhone from Malware: Signs and Solutions

September 3, 2023/in Computer Security

While iPhones are generally considered safe from malware, it’s still possible for these devices to be attackeddangerous software createdcybercriminals. Cybersecurity giant McAfee has outlined seven common signs that indicate your iPhone may be infected with malware. These signs include a slower device, faster battery drain, being redirected to unintended websitesyour web browser, constant app crashes or unfamiliar apps appearing on your device, a sudden increase in data usage or unknown calls on your phone bill, infection warnings prompting you to purchase or subscribe to something, difficulty shutting down or restarting your device, and an influx of pop-up ads in your web browser.

Keep in mind that these signs aren’t concrete proof of malware, but they are worth investigating to ensure your iPhone isn’t compromised. McAfee recommends updating your iPhone regularly as a preventive measure and to close security holes that malware may exploit. Apple regularly releases software updates that include new security patches and features. Additionally, clearing your website data and browsing history can help eliminate any potential malware. You can do thisgoing into your device’s settings, selecting Safari, and then choosing the option to clear history and website data.

If necessary, you can also restore a previous backup of your iPhone from iCloud. However, if all else fails, a factory reset may be the best solution to return your device to a brand-new state. By following these steps and staying vigilant for any red flags, you can protect your iPhone from malware and enjoy a safe digital experience.

Sources:
– McAfee

Source…

Tag Archive for: iphone

Targeted for Spying