Google security crew sheds light long-running iOS spyware operation

Google security crew sheds light long-running iOS spyware operation

Project Zero dissects years-long surveillance campaign


Google's Project Zero says more than a dozen iOS flaws that Apple patched back in February had been under attack for years.


Zero team bug hunter Ian Beer explained how the collection of fourteen vulnerabilities in various components of the OS, ranging from the browser to the kernel, were chained together to covertly launch spyware on the machines of anyone who visited one of a group of "watering hole" sites.


Those exploits, designed to compromise new versions and models of the iPhone and iOS as they were released, from the iPhone 5s to the X, appeared in various combinations that were active on the sites for over two years prior to being discovered and patched.


"There was no target discrimination; simply visiting ..

Support the originator by clicking the read the rest link below.