37C3 - Operation Triangulation: What You Get When Attack iPhones of Researchers \ stacker news ~security

37C3 - Operation Triangulation: What You Get When Attack iPhones of Researchers www.youtube.com/watch?v=1f6YyH62jFE

896 sats \ 4 comments \ @ek 29 Dec 2023 security

Presentation from 37C3 - the 37th Chaos Communication Congress in Hamburg, Germany.

Imagine discovering a zero-click attack targeting Apple mobile devices of your colleagues and managing to capture all the stages of the attack. That’s exactly what happened to us! This led to the fixing of four zero-day vulnerabilities and discovering of a previously unknown and highly sophisticated spyware that had been around for years without anyone noticing. We call it Operation Triangulation. We've been teasing this story for almost six months, while thoroughly analyzing every stage of the attack. Now, for the first time, we're ready to tell you all about it. This is the story of the most sophisticated attack chain and spyware ever discovered by Kaspersky.

-- events.ccc.de

view all related items

453 sats \ 1 reply \ @xz 30 Dec 2023

They explained the mechanics very well. Interesting to hear that machine learning was employed in the scraping and theft of user images. My guess is that tuning models on user biometry and text dbs was the purpose.

Pure speculation though!

0 sats \ 0 replies \ @ek OP 30 Dec 2023

Thanks for the review, now I might watch it myself, lol

408 sats \ 1 reply \ @xz 30 Dec 2023

Nice. Thanks for sharing!

0 sats \ 0 replies \ @ek OP 30 Dec 2023

No worries, glad you liked it! I only know that most stuff from CCC is awesome. But I didn't have time to watch it myself yet.