Want to read Slashdot from your mobile device? Point it at m.slashdot.org and keep reading!

 



Forgot your password?
typodupeerror
Iphone Privacy Security Apple

Apple Fixes Three Zero Days Used In Targeted Attack (onthewire.io) 76

Trailrunner7 quotes a report from On The Wire: Apple has patched three critical vulnerabilities in iOS that were identified when an attacker targeted a human rights activist in the UAE with an exploit chain that used the bugs to attempt to remotely jailbreak and infect his iPhone. The vulnerabilities include two kernel flaws and one in WebKit and Apple released iOS 9.3.5 to fix them.

The attack that set off the investigation into the vulnerabilities targeted Ahmed Mansoor, an activist living in the UAE. Earlier this month, he received a text message that included a link to what was supposedly new information on human rights abuses. Suspicious, Manor forwarded the link to researchers at the University of Toronto's Citizen Lab, who recognized what they were looking at. "On August 10 and 11, 2016, Mansoor received SMS text messages on his iPhone promising ;new secrets' about detainees tortured in UAE jails if he clicked on an included link. Instead of clicking, Mansoor sent the messages to Citizen Lab researchers. We recognized the links as belonging to an exploit infrastructure connected to NSO Group, an Israel-based 'cyber war' company that sells Pegasus, a government-exclusive "lawful intercept" spyware product," Citizen Lab said in a new report on the attack and iOS flaws.

This discussion has been archived. No new comments can be posted.

Apple Fixes Three Zero Days Used In Targeted Attack

Comments Filter:
  • by Anonymous Coward on Saturday August 27, 2016 @09:39PM (#52783217)

    Thank god I use android where such bug fixes will never make it to my phone.

    • Thank god I use android where such bug fixes will never make it to my phone.

      Ha!

      I don't have modpoints right now and even if I had some I couldn't use 'em if I wanted to, since I've already replied..

      Your post is either +1 Funny or +1 Insightful! It went *whoosh* right over everyone's heads, its seems!

  • Also v7 just hit for those in the beta program.
  • by BlackSabbath ( 118110 ) on Sunday August 28, 2016 @07:17AM (#52784515)

"My sense of purpose is gone! I have no idea who I AM!" "Oh, my God... You've.. You've turned him into a DEMOCRAT!" -- Doonesbury

Working...