Unpatched iPhones: The Latest Target of Malicious Attackers

In a recent revelation, Google's Threat Intelligence Group and security company iVerify have shed light on an exploit kit called Coruna, which leverages multiple vulnerabilities to compromise unpatched iPhones running older iOS versions. This malicious attack highlights the importance of keeping devices updated and underscores the need for vigilance in the cybersecurity landscape.

Coruna is a sophisticated exploit kit that chains five full iOS exploit chains and 23 vulnerabilities to breach the security layers of iPhones running iOS 13 through iOS 17.2.1. The attack works by exploiting multiple vulnerabilities, including those related to the device's model, system version, and security settings. Once an iPhone falls victim to the Coruna exploit kit, it can gain high-level privileges, install malware, and collect data or download additional modules.

It is worth noting that the Coruna exploit kit targets older iOS versions and is ineffective against the latest system versions. This emphasizes the importance of regularly updating devices to prevent exploitation by malicious actors. Moreover, the fact that the attack checks whether Lockdown Mode is enabled or if the user is in private browsing mode suggests that the attackers are aware of the security measures in place on modern iPhones.

The origin of Coruna appears to be rooted in US government hacking tools, according to iVerify's reverse-engineering of the framework. However, it has been deployed by Russian spies and China-based cybercriminals in various campaigns. This highlights the growing threat of spyware targeting high-profile individuals, including executives, politicians, and technology professionals.

In these campaigns, Coruna was delivered via "watering hole" attacks on compromised websites, including fake cryptocurrency services designed to lure victims to malicious pages. The final payload appears financially motivated, with modules designed to extract cryptocurrency wallet data and recovery phrases from infected devices.

Key Facts About the Coruna Exploit Kit

* Chaining multiple vulnerabilities to breach iPhone security * Exploits five full iOS exploit chains and 23 vulnerabilities * Targets iPhones running iOS 13 through iOS 17.2.1 * Ineffective against latest system versions * Delivered via "watering hole" attacks on compromised websites

The revelation of the Coruna exploit kit serves as a reminder of the ongoing threats to mobile devices and the importance of cybersecurity awareness. By keeping devices updated and being vigilant, individuals can reduce their risk of falling victim to malicious attacks.

Conclusion

In conclusion, the Coruna exploit kit highlights the growing threat of sophisticated mobile attacks and the need for vigilance in the cybersecurity landscape. By understanding how these attacks work and taking steps to protect ourselves, we can reduce our risk of falling victim to malicious actors.

HACKER_BLOG

GOOGLE AND IVERIFY REVEAL GOVERNMENT-GRADE IPHONE EXPLOIT KIT SPREADING TO HACKERS

Unpatched iPhones: The Latest Target of Malicious Attackers

Key Facts About the Coruna Exploit Kit

Conclusion

HACKER_BLOG

GOOGLE AND IVERIFY REVEAL GOVERNMENT-GRADE IPHONE EXPLOIT KIT SPREADING TO HACKERS

Unpatched iPhones: The Latest Target of Malicious Attackers

Key Facts About the Coruna Exploit Kit

Conclusion

RELATED POSTS

‘I can think of a couple Pretti Good reasons!’: Hacktivists may have just cracked open ICE and exposed over 6,000 companies working with the DHS

Project Compass Targets 764 Network as 30 Arrested and Victims Rescued

Israeli spies spent years hacking every camera in Tehran to monitor Ayatollah Ali Khamenei: report