If you only have one exploit, you’re not going to risk your only iOS remote attack to hack Kaspersky.” “But it shows that either hacking Kaspersky was incredibly valuable for the attacker or that whoever this was likely has other iOS zero days as well. “In my opinion, this would be sloppy for an NSA attack,” he says. At the same time, he adds that attackers would need to assume any brazen campaign to target Kaspersky would eventually be discovered. “The security of iOS, once breached, makes it really challenging to detect these attacks,” says Wardle, who was formerly an NSA staffer. In their report, the Kaspersky researchers point out that one of the reasons for this difficulty is iOS’s locked-down design, which makes it very tough to inspect the operating system’s activity. “That shows how ridiculously hard it is to detect these exploits and attacks.” “Kaspersky, arguably one of the best exploit detection companies in the world, was potentially hacked via an iOS zero-day for five years, and it was only discovered now,” says longtime macOS and iOS security researcher Patrick Wardle.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |