We've discovered a new cyberattack against iOS called Triangulation.
The attack starts with iMessage with a malicious attachment, which, using a number of vulnerabilities in iOS installs spyware. No user action is required.
#IOSTriangulation
Follow
Click to Follow e_kaspersky
Eugene Kaspersky
@e_kaspersky
Eugene Kaspersky’s posts
I have accepted invitation to testify before US House of Representatives & address allegations about KL. Hope to get expedited visa.
I had the honor to mеet H.E. Paul Kagame , President of the Republic of Rwanda and discuss an integrated approach to #cybersecurity on a government level. I am also proud to announce the opening of our newly relocated office in the capital of #Rwanda, #Kigali.
We've investigated the Vault 8 report and confirm the certificates in our name are fake. Our customers, private keys and services are safe and unaffected
To my Brazilian followers: Para meus seguidores no Brasil, parabéns pro casal! #Yadinho
Quote
A gente tb está curtindo o #YADINHO viu @Deercheerup, @yayahuz
GIF
read image description
ALT
We welcome the start of negotiations to resolve the current situation in Ukraine and hope that they will lead to a cessation of hostilities and a compromise. We believe that peaceful dialogue is the only possible instrument for resolving conflicts. War isn’t good for anyone.
I recently completed one of my most amazing trips: we drove by car some 12,000 km from #Magadan to #Moscow.
OMG, what an experience! I'll show and write plenty about it 👉 kas.pr/k29b
Yesterday, we told you about #iOSTriangulation. Today, we've got the tools to help you see if you are infected:
blog: securelist.com/find-the-trian
:
It's been 10 years after the discovery of the notorious #Stuxnet worm that was one of the fire starters on the cyberwarfare scene.
Here is the last talk about this discovery from the man who actually found #Stuxnet ⇒ kas.pr/m6sa
No matter how this situation develops, we won’t be doing any more advertising on Twitter this year.
The whole of the planned Twitter advertising budget for 2018 will instead be donated to the . They do a lot to fight censorship online.
In-depth technical analysis of a new method of extracting user cardholder data from compromised websites using legit Google Analytics protocol ⇒ kas.pr/68kq
The seven stages of the week: Denial, Anger, Bargaining, Depression, Acceptance, Saturday, Sunday
Legitimate version of CCleaner distributed by Avast from Aug till Sep 2017 contained a multi-stage malware payload
OK, here is our official statement re the recent article in WSJ.
Recently we found a suspicious shellcode running in the memory of a system process. We decided to investigate how the shellcode was initially placed into the process and where on the infected system the threat was hidden.
We named this #malware #Minas 👉 kas.pr/fn5y
Introducing – #Antidrone device.
It’s shiny, sleek, slick, chic, sick!
But most importantly, it protects critical infrastructure, etc. from pesky, unwanted – potentially dangerous – drones ⇒ kas.pr/2ogz
When someone can't win the competition the fair way they jump into political agenda. Bad for industry, bad for customers.
On June 26th 1997 Kaspersky Lab was founded. Thanks everybody for supporting us throughout our history no matter what! #kaspersky20
I’ve some fantastic news:we’re announcing the global launch of #Kaspersky #Free,which is completely free-of-charge! kas.pr/eeg8
Kaspersky Lab was not involved in, and does not possess any knowledge of the intelligence operation described in the recent article
Replying to
This report is the beginning of the investigation of this sophisticated attack. Today we publish the first results of the analysis, but there is still a lot of work ahead. More details (incl. indicators or compromise and disinfection) kas.pr/m66k #IOSTriangulation
Thanks to a new technology in our products that is capable of detecting supply-chain attacks, our experts have uncovered what seems to be one of the biggest supply-chain incidents ever. #ShadowHammer hits hundreds of thousands of ASUS laptop users: kaspersky.com/blog/shadow-ha
Happy Monday everyone! If you feel bad just think some people may be out of their comfort zone too :)
PS: -47C ~ -53F
Replying to
Like the rest of the world, we are in shock regarding the recent events. The main thing we can do in this situation is provide uninterrupted functioning of our products and services globally.
Replying to
Important: Disabling iMessage would prevent iOS devices from Triangulation attack
Seriously: we're very concerned about possible breach of our products. If anon sources from WSJ article want to investigate let's do it ASAP
We've some great news for #cybersecurity pros: the tools that our GReAT guys use on a daily basis to keep churning out the best research in the world are now available to all of you, and free at that! 👍
Details ⇒ kas.pr/6ckh
Update on #Petya/#ExPetr: it wasn't #ransomware for financial gain. It was a wiper *pretending* to be ransomware -> kas.pr/pu9g
We're 20 years old, but actually our non-stop fight against cyberthreats started 28Y ago. Check out our timeline: kas.pr/HRS7
*Petya wasn't the only #ransomware pushed via MeDoc update. Meet #FakeCry and its false flags → kas.pr/y4kt by
Kaspersky's Incident Response Report is out:
✅ Reasons for incident response
✅ Top industries & geographies
✅ Initial attack vectors
✅ Response time
✅ MITRE ATT&CK tactics and techniques
Details ⇒ kas.pr/rs4x
New conspiracy theory, anon sources media story coming. Note we make no apologies for being aggressive in the battle against cyberthreats
I am launching internal investigation to cross-check. If US LEA has relevant facts - please share.
MATA: #Lazarus' new multi-platform #malware framework targets Windows, Linux and macOS ⇒ kas.pr/e3j9 #APT
We’re relocating a good part of our critical R&D infrastructure to Switzerland. A quick Q&A with details about Global Transparency Initiative: kaspersky.com/blog/swiss-ass
Preliminary results of our internal investigation confirm alleged incidents reported by US media are not true ⇒ kas.pr/3fp3
Replying to
Triangulation transmits private information to remote servers: microphone recordings, photos from instant messengers, geolocation and data about a number of other activities #IOSTriangulation
A few pics from our new data center in Switzerland that will work for our users located in EU.
What to do when banned without evidence and the right to be heard? Well, we’re securing our rights by taking this to the courts. Why? We’ve done nothing wrong. kas.pr/nj7j
#SecurityWithoutBorders
ICYMI: here is a free app to limit Windows 10 collecting your telemetry and send it to Microsoft & 3rd parties: kas.pr/1SC6
An (un)documented Microsoft Word feature abused by attackers kas.pr/dbf9
German spyware #FinSpy improves intrusion techniques into mobile devices. We've detected in-the-wild new implants for #iOS and #Android. Details ⇒ kas.pr/919c
We have protected the EU for 20 years working with law enforcement leading to multiple arrests of CYBERCRIMINALS. Based upon today’s decision from the EU Parliament, we are forced to freeze our cooperation with orgs including & #NoMoreRansom
In just 2 years the landscape of the most attacked plarforms changed dramatically. Why? The developers of browsers invested a lot of resources and set up processes to mitigate cyberattacks #TheSAS2019
Replying to
The spyware managed to infect several dozen iPhones of our employees. Thanks to the measures taken, the company is operating normally, business processes and user data are not affected, and the threat has been neutralized. We continue to protect you, as always #IOSTriangulation
"Anything I can do to prove that we don’t behave maliciously I will do it". We have nothing to hide.
apnews.com/37f7f26c48ec4c by
#WannaCry mistakes (lots of) that can help you restore files after infection securelist.com/blog/research/ #ransomware
We’re grateful to our German customers for their continued choice of & will continue to protect them from threats no matter the origin.
We call on regulators to make choices on facts not politics.
EN - kaspersky.com/blog/collatera
Replying to
Important: The activity observed in Operation Triangulation does not overlap with already known iOS campaigns, such as Pegasus, Predator or Reign.
Kaspersky Lab leaving Russia for Switzerland after Kremlin spying claims news.sky.com/story/kaspersk by
This is not to be confused with a 90s cellphonу :)
Meet Kaspersky IoT Secure Gateway 100 – the first of a range of cyber-immune products for industrial IoT infrastructure based on #KasperskyOS, which is currently heading out to the market.
Details 👉 kas.pr/8zq4
Hacking YouTube channels with stolen cookies?
Yes, scammers can hack a YouTube channel without knowing a password and second factor 👉 kas.pr/6ca1
Replying to
We are quite confident that Kaspersky was not the main target of this cyberattack. The coming days will bring more clarity and further details on the worldwide proliferation of the spyware #IOSTriangulation
When politics use the news to shape facts, no one wins. Our response to DHS Binding Operational Directive 17-01 ⇒
kas.pr/hfu1
Welcome #Bitscout – free remote digital forensics tool builder, our joint project with kas.pr/5m19 via
Kaspersky Lab announces comprehensive transparency initiative kas.pr/l8fi
An illustrative example how fake stories about are cooked. Ingredients: politician, pseudo hacker, sensation-seeking journalists, opportunistic media. Yes, we turn to court against De Telegraaf and Mr.Vermeend. Read on: kas.pr/e49f
-55°C (-67 °F)
How does it feel? Not that bad if you're properly dressed.
But the intense cold also brings impossibly out-of-this-world views. You feel the gasps of astonishment at the surrounding vastness, whiteness, awesomeness…
👉 kas.pr/qt3i
My first memory from the first years after founding the Kompany was the toughest of all because we really had to put the hours in, aka, bust our asses. So we toiled and slogged, working most weekends, and with hardly ever a vacation ⇒ kas.pr/t1md
Researchers urge Apple users to update immediately.
The new zero-click zero-day ForcedEntry flaw affects all things Apple: iPhones, iPads, Macs and Watches. 👉 kas.pr/k386
Let me stress: there is *no* ban for KL products in the UK. We are in touch with regarding our Transparency Initiative and I am sure we will find the way to work together
Millions of people recently raced to install . Here are some tips for those looking to keep their privacy locked down while using the messaging app. kaspersky.com/blog/telegram- #TelegramTips
RESEARCH: at least 20 hotels in LatAm, Europe & Asia targeted in #cyberattack. Infecting hotel desks, cybercriminals retain remote access to the devices, steal, resell hotel guests' credit card data. Even data provided to #OTA is not safe ⇒ kas.pr/c2nr #RevengeHotels
A deep dive into how RU cybercrime underground works kas.pr/M9Az
We’re publishing our findings on espionage platform #Duqu2. Big investigation started with attack on our network kas.pr/1Pwh
We publish an in-depth analysis of #DeathStalker threat actor's new implant #PowerPepper. It's a Windows in-memory PowerShell backdoor that can execute remotely sent shell commands ⇒ kas.pr/qb82
Rumors on darknet say Darkside lost big chunk of their infrastructure, Revil is fiercely backpedaling from gov & public organizations, and underground forums are saying 'no more ransom'.
If true, a good day for the world. Happy Friday friends!
GIF
read image description
ALT
Schroedinger’s #Petya: how it spreads, what does it do, how to protect + IOCs + Yara rules -> kas.pr/ums7 #ransomware
When someone can't win the competition the fair way they start this:
Quote
I received an Avira marketing email sharing the USGOV's concerns about using Kaspersky. It said to use Avira instead. Feels unprofessional.
9 false facts (to name a few) from the recent Bloomberg story: kas.pr/bbg170711
Today is a big day 🎆
We're announcing Kaspersky Threat Attribution Engine - an ultimate tool for a comprehensive code similarity analysis and #cyberattack attribution.
Started as an internal tool 3 years ago it demonstrated 100% accuracy ⇒ kas.pr/nr9k
We’ve officially launched #kasperskyOS for network devices, #ICS & #IoT. My answers to F.A.Q. about the new OS -> kas.pr/Mnr2
My open letter to Dorsey asking for more transparency to quash any doubts about potential political censorship on Twitter kas.pr/k5pj
