"Coruna is one of the most significant examples we've observed of sophisticated spyware-grade capabilities proliferating from commercial surveillance vendors into the hands of nation-state actors and ultimately mass-scale criminal operations."
"The toolkit contains more than 20 vulnerabilities that can be used to break into Apple devices, allowing hackers to bypass built-in security protections. The attack was designed in part to exploit Apple's Safari browser and can be triggered in several ways, including when a user clicks on a malicious link."
"Researchers said the spyware can target devices running iOS versions released between 2019 and late 2023, urging affected users to update their phones immediately. Once activated, the system can steal pieces of text and potentially access sensitive information such as photos, notes and financial data stored on the device."
Google's Threat Intelligence Group identified Coruna, a sophisticated spyware targeting iPhones with iOS versions released between 2019 and late 2023. The toolkit contains more than 20 vulnerabilities enabling hackers to bypass Apple's security protections and gain deep device access. The spyware exploits Safari browser vulnerabilities and can be triggered through malicious links, allowing attackers to steal text, photos, notes, and financial data. Originally theorized to be a leaked US government surveillance tool, Coruna has been deployed by Russian espionage groups against Ukrainian websites and Chinese hackers through fake cryptocurrency platforms. Cybersecurity firm iVerify confirmed the findings, noting the spyware represents sophisticated surveillance capabilities spreading from commercial vendors to nation-state actors and criminal operations.
#iphone-spyware #ios-security-vulnerabilities #coruna-malware #nation-state-cyber-attacks #mobile-device-security
Read at Mail Online
Unable to calculate read time
Collection
[
|
...
]