Zero-day Exploits Target Apple Devices in Spyware Attacks
Originally Published 2 years ago — by BleepingComputer
Apple recently patched three zero-day vulnerabilities that were exploited by attackers to install Cytrox's Predator spyware. The bugs were used in attacks targeting former Egyptian MP Ahmed Eltantawy, who had announced plans to join the Egyptian presidential election in 2024. The attackers used decoy SMS and WhatsApp messages, as well as network injection, to redirect Eltantawy to a malicious website and infect his phone. Additionally, Google's Threat Analysis Group (TAG) discovered that the same attackers used a separate exploit chain to drop the Predator spyware on Android devices in Egypt, exploiting a Chrome zero-day vulnerability. Apple users are urged to install emergency security updates and enable Lockdown Mode to protect against these exploits. This marks the 16th zero-day vulnerability addressed by Apple this year.