The rise of artificial intelligence (AI) has led to increasingly sophisticated cyberattacks, turning ransomware into a service for cybercriminals. New threats have also emerged, targeting the iOS operating system through Operation Triangulation 2024.
As the cybersecurity threat landscape continues to evolve, with new attackers, technologies, and threats constantly emerging, organizations and communities face an uncertain landscape. Even opening an email can pose unpredictable risks.
According to Kaspersky's Incident Response Analyst Report 2023, 75% of cyber attacks take advantage of vulnerabilities in Microsoft Office. In terms of attack methods, 42.3% target free applications available on the internet, 20.3% take advantage of compromised accounts, while only 8.5% use brute force.
Most attacks start with stolen or illegally acquired credentials. They then launch attacks via RDP, send phishing emails containing malicious attachments or links, and infect systems with malicious files disguised as documents from public sources. On the positive side, the number of attacks in Q1 2023 decreased by 36% compared to the same period in 2022.
One of the most dangerous cyberattack campaigns ever discovered by Kaspersky is called Operation Triangulation. This campaign targets iOS devices by exploiting hardware vulnerabilities in Apple's CPUs to install malware.
Notably, the hackers used four extremely dangerous zero-day vulnerabilities to infect the targeted devices, which can cost more than $1 million on the black market.
When a targeted iOS device receives an invisible iMessage containing a malicious attachment, the attachment exploits a vulnerability that allows the malware to be executed automatically without user interaction. Once installed, the malware connects to a command and control server and begins the multi-stage attack. Once complete, the attacker takes full control of the iOS device and wipes away all evidence of the attack to hide their actions.
Apple has patched these vulnerabilities, however, to protect devices against possible future attacks, iOS users should regularly update software, periodically restart their devices and turn off iMessage to minimize the risk of receiving malware via messages.
" Government organizations are the most targeted by attacks, followed by manufacturing enterprises and financial institutions. Ransomware and cyber-attacks are the two most serious threats, causing great damage to organizations," said Igor Kuznetsov, Director of the Global Research and Analysis Team (GReAT) at Kaspersky.
KIM THANH
Source: https://www.sggp.org.vn/tan-cong-mang-khai-thac-cac-lo-hong-phan-cung-trong-cpu-cua-apple-post754206.html
![[Photo] Panorama of the cable-stayed bridge, the final bottleneck of the Ben Luc-Long Thanh expressway](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/391fdf21025541d6b2f092e49a17243f)
![[Photo] The 1st Congress of Phu Tho Provincial Party Committee, term 2025-2030](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/1507da06216649bba8a1ce6251816820)
![[Photo] General Secretary To Lam, Secretary of the Central Military Commission attends the 12th Party Congress of the Army](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/9b63aaa37ddb472ead84e3870a8ae825)
![[Photo] President Luong Cuong receives President of the Cuban National Assembly Esteban Lazo Hernandez](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/4d38932911c24f6ea1936252bd5427fa)
![[Photo] Solemn opening of the 12th Military Party Congress for the 2025-2030 term](https://vphoto.vietnam.vn/thumb/1200x675/vietnam/resource/IMAGE/2025/9/30/2cd383b3130d41a1a4b5ace0d5eb989d)
![[Infographic] Key tasks in the 2025-2030 term of Dong Nai province](https://vphoto.vietnam.vn/thumb/402x226/vietnam/resource/IMAGE/2025/9/30/59bd43f4437a483099313af036fef0db)
Comment (0)