Cybersecurity Threat from Alphabet Inc. Targets Older iOS Versions
Alphabet Inc. has uncovered a cybersecurity concern affecting prior iterations of Apple Inc.‘s iOS, a vulnerability potentially traced back to U.S. governmental sources.
Discovery of Coruna by Google
In a comprehensive research communiqué released on Tuesday, the Google Threat Intelligence Group announced the identification of a tool dubbed “Coruna,” designed to penetrate iPhone devices operating on iOS versions 13.0 (launched in 2019) up to 17.2.1 (issued in 2023).
The exploration traces the initial discovery of this exploit kit to a surveillance vendor’s endeavor to compromise a mobile device.
The group noted its application in attacks directed against users in Ukraine, orchestrated by assailants believed to be affiliated with Russian entities, in addition to financially driven Chinese hackers.
Critical Advisory:
- Users are urged to update to the latest iOS versions.
- Suggested caution amid potential threats from older operating systems.
While GITG refrains from detailing the provenance of the exploit kit, it insinuates an existing “active market for ‘pre-owned’ zero-day exploits,” emphasizing that the kit lacks efficacy against current iOS updates. Therefore, the group strongly advises iPhone users to implement the most recent iOS upgrades.
iVerify Postulates U.S. Origins
In a concurrent blog post, mobile security platform iVerify corroborated the identification of the exploit kit. The post remarked, “This constitutes the inaugural observed mass exploitation of mobile devices, particularly iOS, by a criminal organization utilizing tools plausibly constructed by a state actor.”
The outlet posited that they possess “evidence,” insinuating the tool’s lineage as “a leaked U.S. government framework,” drawing parallels to EternalBlue, an exploit targeting Microsoft Corp‘s Windows ecosystem, purportedly created by the National Security Agency (NSA).
Department of War vs. Anthropic
This revelation emerges amid intensified focus on cybersecurity, as President Donald Trump has mandated federal agencies to discontinue the use of Anthropic’s AI innovations, deeming the restrictions overly stringent concerning legitimate military applications. The company has been officially blacklisted by the government.
Simultaneously, the Department of War, under Secretary Pete Hegseth, has finalized an accord with OpenAI, led by Sam Altman, to implement its AI technologies in classified military systems, in alignment with OpenAI’s stipulations, which impose constraints against domestic mass surveillance alongside mandates for human oversight of martial engagements.
In response, Anthropic CEO Dario Amodei defended his organization, underscoring its patriotic mission and asserting that it stands as the inaugural AI firm to collaborate with the defense sector in a classified context.
Source link: Aol.com.
