Home Tech News Symantec: Apple iOS users risk ‘jailbreak’ with new virus

Symantec: Apple iOS users risk ‘jailbreak’ with new virus

Symantec: Apple iOS users risk ‘jailbreak’ with new virus
0
0

US digital security company, Symantec has alerted that Apple iOS devices risk being hacked with discovery of new spyware and other mobile attacks.

[quote font=”georgia” font_size=”22″ font_style=”italic” align=”left” arrow=”yes”]According to Symantec, the Trident vulnerabilities were being exploited to remotely jailbreak iOS devices and install spyware called Pegasus. Pegasus is capable of accessing messages, calls, and emails. It can also gather information from apps including Gmail, Facebook, Skype, and WhatsApp. Pegasus is spyware developed by Israeli firm NSO Group. The company reportedly only sells its software to governments.[/quote]The tech security company says it has discovered some vulnerabilities that can be used to ‘jailbreak’ Apple iOS devices and advises users of iPhones and other iOS devices to upgrade to the latest version of the operating system immediately.

Symantec warns in a blog post that the “vulnerabilities in Apple’s iOS mobile operating system are being exploited in the wild in targeted attacks. The vulnerabilities, collectively dubbed ‘Trident’, can be exploited by attackers to remotely jailbreak Apple iOS devices and install malware.”

The vulnerabilities were disclosed by Citizen Lab, which discovered an attempted attack against one Ahmed Mansoor, a UAE-based human rights activist, according to Symantec. Mansoor received suspicious SMS messages to his iPhone and handed the device over to Citizen Lab for investigation.

Symantec: Apple iOS users risk ‘jailbreak’ with new virus
Image showing  iPhone 6s

Consequently, it was discovered that the Trident consists of three related vulnerabilities: CVE-2016-4657, which leads to arbitrary code execution if user visits a maliciously crafted website using the vulnerable device; CVE-2016-4655, which can lead an application to disclose kernel memory; and CVE-2016-4656, which may allow an application to execute arbitrary code with kernel privileges.

According to Symantec, the Trident vulnerabilities were being exploited to remotely jailbreak iOS devices and install spyware called Pegasus. Pegasus is capable of accessing messages, calls, and emails. It can also gather information from apps including Gmail, Facebook, Skype, and WhatsApp. Pegasus is spyware developed by Israeli firm NSO Group. The company reportedly only sells its software to governments.

“At present, it appears that Trident has only been used in a limited number of targeted attacks, meaning chances of being affected are low. However, as news of the vulnerabilities spread, it is likely that other groups will rush to exploit them,” the tech security company says.

Any device running iOS versions 9.3.4 and below is vulnerable, and users of iPhones and other iOS devices are advised by the tech security company to immediately update iOS to the latest version, 9.3.5.

 

AdvertisingSymantec: Apple iOS users risk ‘jailbreak’ with new virus
Success Kafoi Journalist at Technology Times Media. Mobile: 08077671673 email: success.kafoi@technologytimes.ng