A naukri.com initiative
TechCrunch
2d
213
Image Credit: TechCrunch
Apple fixes new iPhone zero-day bug used in Paragon spyware hacks
- Apple has fixed a zero-day bug that was used by the Paragon spyware to hack iPhones of two European journalists.
- The Citizen Lab report mentioned that the flaw was mitigated in iOS 18.3.1 that was released on February 10.
- The security update initially only addressed an unrelated flaw, but was later updated to include details about a logic issue in processing media via an iCloud Link.
- The flaw was exploited in an attack against specific individuals, including Italian journalist Ciro Pellegrino and another European journalist.
- Apple did not disclose the existence of this patched flaw until four months after the iOS update release.
- The Paragon spyware scandal started in January with WhatsApp notifying users of being targeted with Graphite spyware.
- Several iPhone users later received notifications from Apple about being targets of mercenary spyware.
- The Citizen Lab's findings confirmed that two journalists targeted with Apple's notification were hacked with Paragon spyware.
- It's uncertain if all Apple users who received the notification were targeted with Graphite.
- Apple did not provide a comment on the reason for the delayed disclosure of the patched flaw.
- The report mentions users in 100 countries received notifications about being affected by the spyware campaign.
Read Full Article
12 Likes
For uninterrupted reading, download the app