Physical Address
304 North Cardinal St.
Dorchester Center, MA 02124
Researchers revealed Thursday that Two European journalists have hacked their iPhones with spy software manufactured by Paragon. Apple says he has corrected the bug that was used to hack their phones.
The Citizen Lab wrote in its report, shared with Techcrunch before its publication, which Apple had declared to its researchers that the defect exploited in the attacks had been “attenuated in iOS 18.3.1”, an update of iPhones published on February 10.
Until this week, the opinion of this security update mentioned a single unrelated flaw, which As much as attackers deactivate an iPhone safety mechanism It makes you difficult to unlock phones.
Thursday, however, Apple Update of his opinion of February 10 Include details on a new flaw, which was also set at the time but not publicized.
“A logic problem existed when processing a photo or video or video in a malicious manner shared via an iCloud link. Apple is aware of a report that this problem may have been exploited in an extremely sophisticated attack against specific targeted individuals,” said the council now updated.
In the final version of its report published ThursdayThe Citizen Lab confirmed that it was the defect used against the Italian journalist Ciro Pellegrino and an “eminent” European journalist.
Contact us
Do you have more Paragon information? Or other spy software manufacturers? From a device and a non-work network, you can contact Lorenzo Franceschi-Bicchiera safely on the signal at +1 917 257 1382, or via Telegram and Keybase @lorenzofb, or e-mail.
We do not know why Apple only disclosed the existence of this corrected defect until four months after the publication of the iOS update, and an Apple spokesperson responded to a comment request to request clarity.
The Paragon Spyware scandal began in January when WhatsApp informed about 90 of its users, including journalists and human rights activiststhat they had been targeted with spy software made by Paragon, nicknamed Graphite.
Then, at the end of April, Several iPhone users have received a notification From apple alerting them, they had been the targets of mercenary spy software. The alert did not mention the spy company behind the hacking campaign.
Thursday, Citizen Lab published its results Confirming that two journalists who had received this Apple notification were hacked with paragon spy software.
It is not clear if all Apple users who have received the notification have also been targeted with graphite. The Apple alert said that “today’s notification is sent to affected users in 100 countries”.
