|
Google and cybersecurity companies Lookout and iVerify have detailed a new hacking technique that potentially puts a significant portion of iPhone users in danger, just by visiting the wrong web page. The hack is called "DarkSword" and since it specifically targets several different versions of iOS 18, it could affect "close to a quarter of iPhones," Wired writes.
DarkSword is a "fileless" hack that leverages a collection of exploits to access sensitive data when an iPhone visits an infected website. Rather than install spyware that hangs around on a user's phone after messages and other private information are stolen, fileless hacks like DarkSword take control of "the legitimate processes in an iPhone's operating system to steal data," according to Wired. Even more troubling, DarkSword deletes any evidence it was running on an iPhone after it finishes stealing your information.
The hack starts as soon as an iOS device encounters an "malicious iframe embedded in a web page," after which it works its way through your iPhone, gathering sensitive information like passwords before deleting itself. DarkSword can abscond with things like messages a
|
|
NEW RESOURCES New Mexico Department of Transporation: NMDOT launches platform for transportation projects. "The electronic Statewide Transportation Improvement Program (eSTIP) uses Geographic Information System technology to display projects on a dynamic, statewide […]
|
|
Aiming to bolster its assessment of Internet traffic health Cisco said it would buy startup Border Gateway Protocol monitoring firm Code BGP for an undisclosed amount.
Privately held Code BGP will slide into Cisco's ThousandEyes network intelligence product portfolio and bring a cloud-based platform that among other features, maintains an inventory of IP address prefixes, peerings and outbound policies of an organization via configured sources, like BGP feeds. BGP tells Internet traffic what route to take, and the BGP best-path selection algorithm determines the optimal routes to use for traffic forwarding.
Then, the system lets customers see and interact with this inventory in real-time through an open API and bring real-time detection of BGP hijacking, route leaks, and other BGP issues according to the company. Adding such capabilities will let ThousandEyes further expand its BGP monitoring and incident analysis capabilities to maintain health of the Internet as well as key applications and services, according to Joe Vaccaro vice president of products for Cisco's ThousandEyes in a blog about the acquisition.
To read this article in full, please click here
|
|
