Georgy Kucherin
@kucher1n
Researching malware @ Kaspersky GReAT
ID:1642125261398319105
01-04-2023 11:22:47
67 Tweets
3,2K Followers
449 Following
Today, I will be giving a talk on Operation Triangulation with Boris Larin and Leonid Bezvershenko at #37c3 in Hamburg. Come see our talk if you are interested in learning more about this attack!
Imagine discovering a 0-click attack targeting iPhones of your colleagues and managing to capture four 0-days and a spyware with mind-blowing 🤯 capabilities. I, Leonid Bezvershenko and Georgy Kucherin will tell you everything about “Operation Triangulation” at #37c3 halfnarp.events.ccc.de
Ever wanted to take another look at #OperationTriangulation malware? Then check out VirusTotal - we have uploaded malicious modules used in this campaign.
virustotal.com/gui/file/ff2f2…
virustotal.com/gui/file/7e779…
virustotal.com/gui/file/c2393…
virustotal.com/gui/file/ff2f2…
The #flareon10 countdown is now live at flare-on.com. Clear your weekend plans for Sept. 30th.
The story of the #iOSTriangulation in-the-wild 0-days continues! CVE-2023-38606 is another kernel vulnerability that was used in the 0-click exploit chain. Discovered by Valentin Pashkov, Mikhail Vinogradov, Georgy Kucherin, Leonid Bezvershenko, and yours truly. Update all your Apple devices!
Today Apple released updates for CVE-2023-32434 (Kernel) and CVE-2023-32435 (WebKit) in-the-wild zero-days which were discovered by us (Georgy Kucherin, Leonid Bezvershenko and yours truly) in the #iOSTriangulation attacks. Update your iOS/iPadOS/macOS/watchOS now!
Have you wanted to take your own look at the #iOSTriangulation spyware? Well, we uploaded the #TriangleDB implant to VirusTotal: virustotal.com/gui/file/fd9e9…
Triangulation: Did “the NSA” fail to learn the lessons of NSO? My colleague Bill Marczak on the Kaspersky report and the Apple zero click exploit👇👇 medium.com/Bill Marczak/t…