Skip to main content
Customer Support Customer Support

Newly found zero-click iPhone exploit used in NSO spyware attacks

  • April 18, 2022
  • 7 replies
  • 34 views
Jasper_The_Rasper
Moderator
Forum|alt.badge.img+54

April 18,  2022  By Sergiu Gatlan

 

Apple

Digital threat researchers at Citizen Lab have discovered a new zero-click iMessage exploit used to install NSO Group spyware on iPhones belonging to Catalan politicians, journalists, and activists.

The previously unknown iOS zero-click security flaw dubbed HOMAGE affects some versions before iOS 13.2 (the latest stable iOS version is 15.4).

It was used in a campaign targeting at least 65 people with NSO's Pegasus spyware between 2017 and 2020, together with the Kismet iMessage exploit and a WhatsApp flaw.

 

>> Full Article <<

    Jasper_The_Rasper
    MajorHavoc
    stlshark

    7 replies

    MajorHavoc
    Bronze VIP
    Forum|alt.badge.img+25
    • MajorHavoc
    • Bronze VIP
    • April 19, 2022

    If I recall, Apple closed this hole fairly fast. But just shows that Apple devices can be exploited too. 

    - Owen Rubin,  Apple Expert. Worked in Vision Pro team and early Mac HW and OS engineer at Apple. Machines: 2017 iMac Pro 27" 5K 3GHz 10-Core Xenon Sonoma 14.x. 2023 14" MacBookPro M2 Max Ventura 13.x, 2018 16" MacBookPro Ventura 13.x, and a dozen or so older machines for testing. iPhone 14 Pro, iPhone 13 Pro, iPhone 6.
    Jasper_The_Rasper
    MajorHavoc
    kleinmat4103
    russell.harris
    Popular Voice
    Forum|alt.badge.img+5

    Yes, thanks for the info. I’m not sure any device is 100% safe these days but good that Apple addressed this quickly.

    "The only problem with troubleshooting is that sometimes trouble shoots back!"
    Jasper_The_Rasper
    MajorHavoc
    kleinmat4103
    D
    New Voice
    Forum|alt.badge.img+8
    • deanosborne
    • New Voice
    • April 19, 2022

    I wonder how many phones out there are still on iOS 13.2 or below. Bound to be some grandparents out there.

    Jasper_The_Rasper
    MajorHavoc
    kleinmat4103
    russell.harris
    Popular Voice
    Forum|alt.badge.img+5

    For sure. They’ll be many people who have older iPhones running an older iOS as they don’t want/need to buy a newer one. I myself have an older iPad that my daughter now uses for learning and I can’t update the os on it

    "The only problem with troubleshooting is that sometimes trouble shoots back!"
    Jasper_The_Rasper
    MajorHavoc
    kleinmat4103
    kleinmat4103
    Popular Voice
    Forum|alt.badge.img+6
    • kleinmat4103
    • Popular Voice
    • April 20, 2022

    Yes. I recall they pushed a patch very quickly to address this. Seems like there’s been quite a few Apple-related security events recently. I wonder if they will ever become as common as Windows/Android.

    TripleHelix
    MajorHavoc
    kleinmat4103
    russell.harris
    Popular Voice
    Forum|alt.badge.img+5

    Let’s hope not!

    "The only problem with troubleshooting is that sometimes trouble shoots back!"
    TripleHelix
    MajorHavoc
    MunkeyMan
    New Voice
    Forum|alt.badge.img+4
    • MunkeyMan
    • New Voice
    • April 20, 2022

    Hopefully this is fixed as an issue as stated in comments above?

    Cheeky Munkey IT
    TripleHelix
    MajorHavoc
    Terms & ConditionsAccessibility statement