Scoop has an Ethical Paywall
Work smarter with a Pro licence Learn More

Video | Business Headlines | Internet | Science | Scientific Ethics | Technology | Search

 

Trio of iOS zero-days being exploited in the wild

Trident: Trio of iOS zero-days being exploited in the wild


Users of iPhones and other iOS devices are advised to upgrade to the latest version of the operating system.


Three zero-day vulnerabilities in Apple’s iOS mobile operating system are being exploited in the wild in targeted attacks. The vulnerabilities, collectively dubbed “Trident”, can be exploited by attackers to remotely jailbreak Apple iOS devices and install malware.

Q: How were the vulnerabilities discovered?

A: The vulnerabilities were disclosed on August 24 by Citizen Lab, who discovered an attempted attack against Ahmed Mansoor, a UAE-based human rights activist. Mansoor received suspicious SMS messages to his iPhone and handed the device over to Citizen Lab for investigation.

Q: What are the vulnerabilities found in iOS?

A: Trident consists of three related vulnerabilities:

CVE-2016-4657 leads to arbitrary code execution if user visits a maliciously crafted website using the vulnerable device

CVE-2016-4655 can lead an application to disclose kernel memory

CVE-2016-4656 may allow an application to execute arbitrary code with kernel privileges

Advertisement - scroll to continue reading

Are you getting our free newsletter?

Subscribe to Scoop’s 'The Catch Up' our free weekly newsletter sent to your inbox every Monday with stories from across our network.

Q: How was Trident being exploited in the wild?

A: Citizen Lab found that the Trident vulnerabilities were being exploited to remotely jailbreak iOS devices and install spyware called Pegasus. Pegasus is capable of accessing messages, calls, and emails. It can also gather information from apps including Gmail, Facebook, Skype, and WhatsApp.

Q: What is Pegasus?

A: According to Citizen Lab, Pegasus is spyware developed by Israeli firm NSO Group. The company reportedly only sells its software to governments.

Q: How likely am I to be affected?

A: At present, it appears that Trident has only been used in a limited number of targeted attacks, meaning chances of being affected are low. However, as news of the vulnerabilities spread, it is likely that other groups will rush to exploit them.

Q: Is my Apple device vulnerable to Trident?

A: Any device running iOS versions 9.3.4 and below is vulnerable.

Q: What should I do to protect myself from attack?

A: Immediately update iOS to the latest version, 9.3.5.

© Scoop Media

Advertisement - scroll to continue reading
 
 
 
Business Headlines | Sci-Tech Headlines

 
GenPro: General Practices Begin Issuing Clause 14 Notices

GenPro has been copied into a rising number of Clause 14 notices issued since the NZNO lodged its Primary Practice Pay Equity Claim against General Practice employers in December 2023.More

SPADA: Screen Industry Unites For Streaming Platform Regulation & Intellectual Property Protections

In an unprecedented international collaboration, representatives of screen producing organisations from around the world have released a joint statement.More

 
 
 
 
 
 
 
 
 
 
 
 

Join Our Free Newsletter

Subscribe to Scoop’s 'The Catch Up' our free weekly newsletter sent to your inbox every Monday with stories from across our network.