Malwarebytes

AUGUST 26, 2021

Researchers from Citizen Lab, an academic research and development lab based in the University of Toronto in Canada, has recently discovered that an exploit affecting iMessage is being used to target Bahraini activists with the Pegasus spyware. The attackers just deploy the exploit. No need for the target to click something.

Spyware 94

Spyware Surveillance Social Engineering Government 94

CyberSecurity Insiders

SEPTEMBER 13, 2021

Researchers state the flaw was a ‘zero-click’ exploit that was discovered on September 2021 by experts who tagged it as an iMessage exploit dubbed ‘ForcedEntry’ that could also infect other Apple iOS, Mac OD and iWatchOS devices.

Spyware 139

Spyware Manufacturing Engineering Malware 139

Security Affairs

FEBRUARY 25, 2024

Iran Crisis Russia-Aligned TAG-70 Targets European Government and Military Mail Servers in New Espionage Campaign U.S. Every week the best security articles from Security Affairs are free for you in your email box. Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Spyware 96

Spyware Cyber Insurance Hacking Advertising 96

Security Affairs

SEPTEMBER 4, 2019

We've also increased WhatsApp & iMessage (0-click) but reduced the payout for iOS (1-click) in accordance with market trends: [link] pic.twitter.com/XqpmAKmmKF — Zerodium (@Zerodium) September 3, 2019. Zerodium also announced it has increased the payouts for eligible iMessage and WhatsApp 0-click exploits.

Advertising 86

Advertising Architecture Mobile Marketing 86

Security Affairs

AUGUST 30, 2019

Earlier this year, Google Threat Analysis Group (TAG) experts uncovered an iPhone hacking campaign, initially, they spotted a limited number of hacked websites used in watering hole attacks against iPhone users. “Earlier this year Google’s Threat Analysis Group (TAG) discovered a small collection of hacked websites.

Spyware 88

Spyware Hacking Advertising Encryption 88

SecureList

DECEMBER 27, 2023

Operation Triangulation’ attack chain Here is a quick rundown of this 0-click iMessage attack, which used four zero-days and was designed to work on iOS versions up to iOS 16.2. Attackers send a malicious iMessage attachment, which the application processes without showing any signs to the user.

Firmware 145

Firmware Engineering Spyware Retail 145

Google Security

JULY 27, 2023

Maddie Stone, Security Researcher, Threat Analysis Group (TAG) This is Google’s fourth annual year-in-review of 0-days exploited in-the-wild [ 2021 , 2020 , 2019 ] and builds off of the mid-year 2022 review. In November 2022, TAG discovered the bug being used in-the-wild. However, Android Security referred the issue to ARM.

Spyware 92

Spyware Manufacturing Internet Internet 92