The latest version of operating systems AppleiOS and iPadOS, kills the Trojan known as Triangulation, distributed via iMessage, capable of silently transmitting private information to remote servers, such as photos and geolocation data.
Kaspersky researchers have pointed out that in order to carry out this malicious campaign, cybercriminals send a communication through this messaging application with a malicious attachment exploiting vulnerabilities in said OS, identified as CVE-2023-32434, CVE-2023-32435 and CVE-2023-32439.
Specifically, this campaign was detected by the Kaspersky Unified Monitoring and Analysis Platform (KUMA), when it determined that several dozen iPhones of senior employees of this cybersecurity firm were infected with this malicious ‘software’ and “extremely sophisticated”, called Triangulation.
As specified by the company, this ‘spyware’ does not require any type of action for its implementation and, once it has infected the device, it can send microphone recordings, photos from instant messaging platforms to remote servers and geolocation data, as well as other user information stored in the mobile phone.
Kaspersky has indicated that, due to the nature of the closed ecosystem of iOS, there are no standard operating system tools to detect and remove this spyware from affected phones, but instead requires a device reset.
Apple recently announced that it has fixed these vulnerabilities.which allowed cybercriminals to execute arbitrary code with kernel privileges or process web content for malicious purposes.
iOS 15.7.7 and iPadOS 15.7.7 end Triangulation without the need to reset the mobile device and lose all data. Both are available for iPhones 6s, iPhone 7, iPhone SE (1st generation), iPad Air 2, iPad mini (4th generation) and iPod Touch (7th generation).
The National Institute of Cybersecurity (Incibe) has launched an alert on these vulnerabilities, which it qualifies as 5 – critical importance, to urge users to update their devices as soon as possible.