{"id":21812,"date":"2023-04-24T09:03:39","date_gmt":"2023-04-24T17:03:39","guid":{"rendered":"https:\/\/www.palada.net\/index.php\/2023\/04\/24\/news-15543\/"},"modified":"2023-04-24T09:03:39","modified_gmt":"2023-04-24T17:03:39","slug":"news-15543","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2023\/04\/24\/news-15543\/","title":{"rendered":"Security researchers uncover NSO Group iPhone attacks in Europe"},"content":{"rendered":"

<\/p>\n

Earlier this week, we saw research showing the noxious NSO Group continues to spy on people\u2019s iPhones in Mexico<\/a>. Now,\u00a0Jamf Threat Labs<\/a> has found additional attacks against human rights activists and journalists in the Middle East and Europe, one of whom worked \u00a0for a global news agency.<\/p>\n

The main thrust of the latest research is that while Apple has taken steps to protect devices running the most recent versions of iOS, these attacks are still being made against older iPhones. Jamf warns that the attacks \u201cprove malicious threat actors will exploit any vulnerabilities in an organization\u2019s infrastructure they can get their hands on.\u201d<\/p>\n

The researchers echo earlier warnings that variations in the manner of these attacks show that new exploits are being developed<\/a>, and while security patches will protect some systems, not all of them are so protected. They also confirm that while Apple is monitoring for such compromises, it is not necessarily aware of every attack \u2014 so high-risk individuals must really develop their own security awareness.<\/p>\n

What\u2019s noteworthy is what people do when they are attacked. Most security experts prefer to explore what has happened before simply wiping or destroying subverted devices; doing so sometimes gives insight into the attackers.<\/p>\n

Attackers will know if they\u2019ve been caught if a device goes dark, and sometimes skilled security forensics teams can get good data from these devices. (This is the kind of information security researchers are publishing at present.)<\/p>\n

\u201cInconsistent investigations and data collection hinders timely and comprehensive research on emerging attack,\u201d the researchers warn.<\/p>\n

That attacks have been surfaced by two different sets of security researchers inside a week shows that the invasive insidious mercenary attacks<\/a> continue to take place, to the detriment of democratic debate. And while these attacks are expensive to operate today, as with \u00a0anything in tech, they will become cheaper to run and will proliferate across the dark web, putting all users at risk, particularly those with older devices.<\/p>\n

With that in mind, enterprises and high-risk individuals should take steps to protect themselves. One critical move, of course, is to use systems that still regularly receive software and security patches and to refrain from using older handsets that no longer do.<\/p>\n

IT should also ensure any software, personal or professional, installed on devices is updated in a timely fashion, including on both personal and managed devices.<\/p>\n

But against such sophisticated zero-day attacks, these protections aren\u2019t enough, which is why Jamf Threat Labs shares additional advice to help improve the defense permiter:<\/p>\n

As global political instability increases, it\u2019s to be expected that security and security protection will become increasingly important to every enterprise user and technology firm in the months to come.<\/p>\n

The fact that in one week both Citizen Lab and Jamf surfaced fresh cases of such attacks is likely to be grist to the mill for Apple\u2019s own security teams, who no doubt are already working to put even more robust protections in place across the ecosystem.<\/p>\n

Earlier this week, an Apple spokesperson said: \u201cOur security teams around the world will continue to work tirelessly to advance Lockdown Mode and strengthen the security and privacy protections in iOS.\u201d<\/p>\n

When Apple sued NSO Group<\/a>, the company providing many of these attacks, Ivan Krsti\u0107, head of Apple security engineering and architecture promised, \u201cApple runs one of the most sophisticated security engineering operations in the world, and we will continue to work tirelessly to protect our users from abusive state-sponsored actors like NSO Group.\u201d<\/p>\n

With this in mind, I\u2019d be very unsurprised to see security becoming one of the important developer topics at WWDC 2023<\/a>.<\/p>\n

Please follow me on\u00a0Mastodon<\/a>, or join me in the\u00a0AppleHolic\u2019s bar & grill<\/a>\u00a0and\u00a0<\/em>Apple<\/em>\u00a0Discussions<\/em><\/a>\u00a0groups on MeWe.<\/em><\/p>\n

http:\/\/www.computerworld.com\/category\/security\/index.rss<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

<\/p>\n

\n
\n

Earlier this week, we saw research showing the noxious NSO Group continues to spy on people\u2019s iPhones in Mexico<\/a>. Now,\u00a0Jamf Threat Labs<\/a> has found additional attacks against human rights activists and journalists in the Middle East and Europe, one of whom worked \u00a0for a global news agency.<\/p>\n

Older iPhones at most risk<\/strong><\/h2>\n

The main thrust of the latest research is that while Apple has taken steps to protect devices running the most recent versions of iOS, these attacks are still being made against older iPhones. Jamf warns that the attacks \u201cprove malicious threat actors will exploit any vulnerabilities in an organization\u2019s infrastructure they can get their hands on.\u201d<\/p>\n

To read this article in full, please click here<\/a><\/p>\n<\/section>\n<\/article>\n","protected":false},"author":4,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[11062,10643],"tags":[2211,10480,8826,10554,714,24580],"class_list":["post-21812","post","type-post","status-publish","format-standard","hentry","category-computerworld","category-independent","tag-apple","tag-ios","tag-iphone","tag-mobile","tag-security","tag-small-and-medium-business"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/21812","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=21812"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/21812\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=21812"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=21812"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=21812"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}