We've discovered a new cyberattack against iOS called Triangulation.
The attack starts with iMessage with a malicious attachment, which, using a number of vulnerabilities in iOS installs spyware. No user action is required.
#IOSTriangulation
Eugene Kaspersky
@e_kaspersky
Eugene Kaspersky’s posts
I have accepted invitation to testify before US House of Representatives & address allegations about KL. Hope to get expedited visa.
I had the honor to mеet H.E. Paul Kagame , President of the Republic of Rwanda and discuss an integrated approach to #cybersecurity on a government level. I am also proud to announce the opening of our newly relocated office in the capital of #Rwanda, #Kigali.
We've investigated the Vault 8 report and confirm the certificates in our name are fake. Our customers, private keys and services are safe and unaffected
To my Brazilian followers: Para meus seguidores no Brasil, parabéns pro casal! #Yadinho
Quote
A gente tb está curtindo o #YADINHO viu @Deercheerup, @yayahuz
GIF
read image description
ALT
We welcome the start of negotiations to resolve the current situation in Ukraine and hope that they will lead to a cessation of hostilities and a compromise. We believe that peaceful dialogue is the only possible instrument for resolving conflicts. War isn’t good for anyone.
Yesterday, we told you about #iOSTriangulation. Today, we've got the tools to help you see if you are infected:
blog: securelist.com/find-the-trian
:
No matter how this situation develops, we won’t be doing any more advertising on Twitter this year.
The whole of the planned Twitter advertising budget for 2018 will instead be donated to the . They do a lot to fight censorship online.
The seven stages of the week: Denial, Anger, Bargaining, Depression, Acceptance, Saturday, Sunday
Legitimate version of CCleaner distributed by Avast from Aug till Sep 2017 contained a multi-stage malware payload
OK, here is our official statement re the recent article in WSJ.
Introducing – #Antidrone device.
It’s shiny, sleek, slick, chic, sick!
But most importantly, it protects critical infrastructure, etc. from pesky, unwanted – potentially dangerous – drones ⇒ kas.pr/2ogz
When someone can't win the competition the fair way they jump into political agenda. Bad for industry, bad for customers.
On June 26th 1997 Kaspersky Lab was founded. Thanks everybody for supporting us throughout our history no matter what! #kaspersky20
I’ve some fantastic news:we’re announcing the global launch of #Kaspersky #Free,which is completely free-of-charge! kas.pr/eeg8
Kaspersky Lab was not involved in, and does not possess any knowledge of the intelligence operation described in the recent article
Replying to
This report is the beginning of the investigation of this sophisticated attack. Today we publish the first results of the analysis, but there is still a lot of work ahead. More details (incl. indicators or compromise and disinfection) kas.pr/m66k #IOSTriangulation
Thanks to a new technology in our products that is capable of detecting supply-chain attacks, our experts have uncovered what seems to be one of the biggest supply-chain incidents ever. #ShadowHammer hits hundreds of thousands of ASUS laptop users: kaspersky.com/blog/shadow-ha
Happy Monday everyone! If you feel bad just think some people may be out of their comfort zone too :)
PS: -47C ~ -53F
Replying to
Like the rest of the world, we are in shock regarding the recent events. The main thing we can do in this situation is provide uninterrupted functioning of our products and services globally.
Replying to
Important: Disabling iMessage would prevent iOS devices from Triangulation attack
Seriously: we're very concerned about possible breach of our products. If anon sources from WSJ article want to investigate let's do it ASAP
We've some great news for #cybersecurity pros: the tools that our GReAT guys use on a daily basis to keep churning out the best research in the world are now available to all of you, and free at that! 👍
Details ⇒ kas.pr/6ckh
Update on #Petya/#ExPetr: it wasn't #ransomware for financial gain. It was a wiper *pretending* to be ransomware -> kas.pr/pu9g
*Petya wasn't the only #ransomware pushed via MeDoc update. Meet #FakeCry and its false flags → kas.pr/y4kt by
New conspiracy theory, anon sources media story coming. Note we make no apologies for being aggressive in the battle against cyberthreats
I am launching internal investigation to cross-check. If US LEA has relevant facts - please share.
Replying to
Triangulation transmits private information to remote servers: microphone recordings, photos from instant messengers, geolocation and data about a number of other activities #IOSTriangulation
A few pics from our new data center in Switzerland that will work for our users located in EU.
What to do when banned without evidence and the right to be heard? Well, we’re securing our rights by taking this to the courts. Why? We’ve done nothing wrong. kas.pr/nj7j
#SecurityWithoutBorders
We have protected the EU for 20 years working with law enforcement leading to multiple arrests of CYBERCRIMINALS. Based upon today’s decision from the EU Parliament, we are forced to freeze our cooperation with orgs including & #NoMoreRansom
In just 2 years the landscape of the most attacked plarforms changed dramatically. Why? The developers of browsers invested a lot of resources and set up processes to mitigate cyberattacks #TheSAS2019
Replying to
The spyware managed to infect several dozen iPhones of our employees. Thanks to the measures taken, the company is operating normally, business processes and user data are not affected, and the threat has been neutralized. We continue to protect you, as always #IOSTriangulation
#WannaCry mistakes (lots of) that can help you restore files after infection securelist.com/blog/research/ #ransomware
Replying to
Important: The activity observed in Operation Triangulation does not overlap with already known iOS campaigns, such as Pegasus, Predator or Reign.
This is not to be confused with a 90s cellphonу :)
Meet Kaspersky IoT Secure Gateway 100 – the first of a range of cyber-immune products for industrial IoT infrastructure based on #KasperskyOS, which is currently heading out to the market.
Details 👉 kas.pr/8zq4
Replying to
We are quite confident that Kaspersky was not the main target of this cyberattack. The coming days will bring more clarity and further details on the worldwide proliferation of the spyware #IOSTriangulation
Welcome #Bitscout – free remote digital forensics tool builder, our joint project with kas.pr/5m19 via
Let me stress: there is *no* ban for KL products in the UK. We are in touch with regarding our Transparency Initiative and I am sure we will find the way to work together
Millions of people recently raced to install . Here are some tips for those looking to keep their privacy locked down while using the messaging app. kaspersky.com/blog/telegram- #TelegramTips
RESEARCH: at least 20 hotels in LatAm, Europe & Asia targeted in #cyberattack. Infecting hotel desks, cybercriminals retain remote access to the devices, steal, resell hotel guests' credit card data. Even data provided to #OTA is not safe ⇒ kas.pr/c2nr #RevengeHotels
We’re publishing our findings on espionage platform #Duqu2. Big investigation started with attack on our network kas.pr/1Pwh
We publish an in-depth analysis of #DeathStalker threat actor's new implant #PowerPepper. It's a Windows in-memory PowerShell backdoor that can execute remotely sent shell commands ⇒ kas.pr/qb82
Rumors on darknet say Darkside lost big chunk of their infrastructure, Revil is fiercely backpedaling from gov & public organizations, and underground forums are saying 'no more ransom'.
If true, a good day for the world. Happy Friday friends!
GIF
read image description
ALT
Schroedinger’s #Petya: how it spreads, what does it do, how to protect + IOCs + Yara rules -> kas.pr/ums7 #ransomware
When someone can't win the competition the fair way they start this:
Quote
I received an Avira marketing email sharing the USGOV's concerns about using Kaspersky. It said to use Avira instead. Feels unprofessional.
Today is a big day 🎆
We're announcing Kaspersky Threat Attribution Engine - an ultimate tool for a comprehensive code similarity analysis and #cyberattack attribution.
Started as an internal tool 3 years ago it demonstrated 100% accuracy ⇒ kas.pr/nr9k
We’ve officially launched #kasperskyOS for network devices, #ICS & #IoT. My answers to F.A.Q. about the new OS -> kas.pr/Mnr2