Kaspersky Reports On New Mobile APT Campaign Targeting iOS Devices

Posted on June 4, 2023

Kaspersky researchers have uncovered an ongoing mobile Advanced Persistent Threat (APT) campaign targeting iOS devices with previously unknown malware. Dubbed as ‘Operation Triangulation’, the campaign distributes zero-click exploits via iMessage to run malware gaining complete control over the device and user data, with the final goal to hiddenly spy on users.

Kaspersky experts have uncovered a new mobile APT campaign while monitoring the network traffic of its corporate Wi-Fi network using the Kaspersky Unified Monitoring and Analysis Platform (KUMA). Upon further analysis, company researchers discovered the threat actor has been targeting iOS devices of dozens of company employees.

The investigation of the attack technique is still ongoing, but so far Kaspersky researchers were able to identify the general infection sequence. The victim received a message via iMessage with an attachment containing a zero-click exploit. Without any further interaction, the message triggered a vulnerability that led to code execution for privilege escalation and provided full control over the infected device. Once the attacker successfully established its presence in the device, the message was automatically deleted.

Further, the spyware quietly transmitted private information to remote servers: including microphone recordings, photos from instant messengers, geolocation and data about a number of other activities of the owner of the infected device.

During the analysis, it was confirmed that there was no impact on the company’s products, technologies and services, and no Kaspersky customer user data or critical company processes were affected. The attackers could only access data stored on the infected devices. Although not certain, it is believed that the attack was not targeted specifically at Kaspersky – the company’s just first to discover it. The following days will likely bring more clarity about the global exposure of this cyberattack.

“When it comes to cybersecurity, even the most secure operating systems can be compromised. As APT actors are constantly evolving their tactics and searching for new weaknesses to exploit, businesses must prioritise security of their systems. This involves prioritising employee education and awareness, and providing them with the latest threat intelligence and tools to effectively recognise and defend against potential threats,” commented Igor Kuznetsov, head of the EEMEA unit at Kaspersky Global Research and Analysis Team (GReAT). “Our investigation of the Triangulation operation continues. We expect further details on it to be shared soon, as there can be targets of this spy operation outside Kaspersky.”

For additional materials on this APT campaign, visit:

To check if your iOS device is infected or not, follow instructions on Securelist. (https://apo-opa.info/3oBaJ9D)

In order to avoid falling victim to a targeted attack by a known or unknown threat actor, Kaspersky researchers recommend implementing the following measures:

  • For endpoint level detection, investigation, and timely remediation of incidents, use a reliable security solution for businesses, like Kaspersky Unified Monitoring and Analysis Platform (KUMA).
  • Update Microsoft Windows OS and other third-party software as soon as possible and do so regularly
  • Provide your SOC team with access to the latest threat intelligence (TI). Kaspersky Threat Intelligence (https://apo-opa.info/43V1DnQ) is a single point of access for the company’s TI, providing it with cyberattack data and insights gathered by Kaspersky spanning over 20 years.
  • Upskill your cybersecurity team to tackle the latest targeted threats with Kaspersky online training (https://apo-opa.info/45J0iRN) developed by GReAT experts.
  • As many targeted attacks start with phishing or other social engineering techniques, introduce security awareness training and teach practical skills to your team – for example, through the Kaspersky Automated Security Awareness Platform

Categorised as : ICT, Infotech
No Comments »

Related posts

Ojodu LCDA Unveils “OJODUWORKS” App To Connect Residents, Businesses And Opportunities 
Ojodu LCDA Unveils “OJODUWORKS” App To Connect Residents, Businesses And Opportunities 
Nigeria’s Celestine Achi Named Among Top 25 Global AI Trainers
Check Point Launches Executive Advisory Board To Guide Next Phase Of AI-Driven Cyber Security Innovation
Check Point Launches Executive Advisory Board To Guide Next Phase Of AI-Driven Cyber Security Innovation
Liquid C2 & CyberCoach Partner To Bring Safer Digital Environment
Liquid C2 & CyberCoach Partner To Bring Safer Digital Environment
HP LOGO
HP Research: From Vibe Hacking to Flat-Pack Malware, Low-Effort AI-Built Attacks Are BeatingCurrentDefenses

Leave a Reply

Your email address will not be published. Required fields are marked *

Latest News

Tinubu’s Re-election: Comrade Dauda Attends Endorsement Convergence
OLALEKAN ONI  The Executive Chairman of Ikeja Local Government, Comrade Akeem Olalekan Dauda (AKOD),... Continue
Wema Bank Unveils New Jingle for ALAT: The Evolution
Wema Bank has introduced a new jingle to mark the next phase of its... Continue
ELECTION 2027: Tinubu and APC must be wary of Kwara Central elite power grab policy, and their superior population myth
Adversaries of equity and justice in Kwara State have been bombarding President Bola Tinubu... Continue
WAMCO, Stakeholders Discuss Dairy Sector Regulation
Dairy leader FrieslandCampina WAMCO Nigeria, has convened a high-level regulatory parley at the Chief... Continue
Tinubu Commissions Gateway Airport, Hails Governor Abiodun’s Use Of Federal Allocation 
  President Bola Ahmed Tinubu on Saturday, 4th April, 2026, commissioned the Gateway International... Continue
Soludo’s EU-UK Town Hall 2.0: Another Masterclass In Accountable Governance
CHRISTIAN ABURIME When Anambra State Governor, Prof. Chukwuma Charles Soludo takes the stage at... Continue
Justice For 3-Year Old: Conflicting Medical Reports Spark Outrage In Defilement Case 
MICHAEL AKINOLA  A scandal has rocked the Mirabel Center in Lagos following conflicting medical... Continue
European Union Unequal Relations With Africa By Dan Eda
  The European Union (EU) is a unique economic and political union of 27... Continue
Eze Alex Nwoye Advises Ndigbo To Embrace Peace In Lagos 
KINGSLEY EBERE A prominent Igbo leader (Onyendu) and Bobaselu of Ejigbo in Lagos, Eze... Continue
President Tinubu Condoles With Prof Attahiru Jega On The Passing Of His Wife 
President Bola Ahmed Tinubu has condoled with Professor Attahiru Jega, the Special Adviser on... Continue

UBA

Access Bank

Twitter

Sponsored