Вештачка интелигенција

Newly Discovered Hardware Feature in Apple iPhone Devices

Summary

Kaspersky’s Global Research and Analysis Team (GReAT) has recently unveiled the discovery of a new, previously unknown hardware feature in Apple iPhone devices. This feature has been a crucial component in recent attacks on iPhone devices, known as “Operation Triangulation”. […]

Novootkrivena hardverska funkcija u Apple iPhone uređajima

Kaspersky’s Global Research and Analysis Team (GReAT) has recently unveiled the discovery of a new, previously unknown hardware feature in Apple iPhone devices. This feature has been a crucial component in recent attacks on iPhone devices, known as “Operation Triangulation”.

The vulnerability in Apple’s device system allowed attackers to bypass the hardware memory protection on iPhone devices using iOS version 16.6 or older. After the initial attack, the attackers exploited this weakness to manipulate the content of the protected memory and gain complete control over the device. Apple later addressed the issue, identified as CVE-2023-38606.

This uncovered hardware feature was not publicly documented, posing a significant challenge for researchers. To uncover it, GReAT researchers engaged in detailed reverse engineering and analysis of the hardware and software integration of the iPhone. They discovered unknown addresses that attackers used to bypass the hardware protection of kernel memory.

The discovery of this feature was challenging due to the closed nature of the iOS ecosystem and required a comprehensive understanding of hardware and software architecture. What we can learn from this discovery is that even advanced hardware protections can be ineffective in dealing with such types of attacks.

Operation Triangulation is a persistent threat targeting iOS devices. After the discovery of this sophisticated campaign, Apple responded by issuing security patches to address four vulnerabilities (CVE-2023-32434, CVE-2023-32435, CVE-2023-38606, and CVE-2023-41990). These vulnerabilities potentially affect a wide range of Apple products. Kaspersky informed Apple about the vulnerability of this hardware feature, which expedited the resolution of the problem.

FAQ: