‘Insomnia’ iOS Exploit Used to Target Uyghurs in China

‘Insomnia’ iOS Exploit Used to Target Uyghurs in China

An iOS exploit called Insomnia has been used between January and March 2020 to spy on Uyghurs in China.

Important points to remember

  • Insomnia affects iOS 12.3, iOS 12.3.1 and iOS 12.3.2. Apple has solved it in iOS 12.4.
  • It has been used by various Chinese entities, including the hacking entity known as the “Evil Eye”.

Details

Using a series of exploits, Evil Eye used an open source framework called IRONSQUIRREL to use a vulnerability in WebKit that was fixed in 2019. If this first attack is successful, the group then installs malware called Insomnia.

During the first series of attacks, it targeted visitors to the Uyghur Academy website. Another website was the Uyghur Times. Only sure user agents targeted, meaning if a website visitor is detected using an Apple device, like this:

Mozilla / 5.0 (iPhone; CPU iPhone OS 12_3_1 like Mac OS X) AppleWebKit / 605.1.15 (KHTML, like Gecko) Version / 12.1.1 EdgiOS / 44.5.0.10 Mobile / 15E148 Safari / 604.1

Mozilla / 5.0 (iPad; 12_3_1 like Mac OS X) AppleWebKit / 605.1.15 (KHTML, like Gecko) Version / 12.0 EdgiOS / 44.5.2 Mobile / 15E148 Safari / 605.1.15CPU OS 1

Since all browsers on iOS must use Apple’s WebKit engine, it was not specific to Safari users. Safari, Google Chrome, and Microsoft Edge have all been successful recipients of the exploit.

The malware had a list of applications, the data of which would steal if it happened to be installed on the victims’ devices. Signal was recently added to the list: Signal, a private messaging application, and ProtonMail, a private messaging service. Both use end-to-end encryption, and it is likely that China has targeted Uyghurs by using these apps to mask their communications.

More details can be found in the Volexity report.

Read further

[iPhone Zero Day Found, Will Be Patched in iOS 13]

[‘Cosmic Frontier: Override’ is a Remake of 1998 Game ‘Escape Velocity’]

Disclaimer: If you need to edit or update this news from compsmag then kindly contact us Learn more

For Latest News Follow us on Google News


Latest Headlines
  • Show all
  • Trending News
  • Popular By week
As inflation rises, demand for low-cost packages increases;  FMCG companies opt for weight reduction and bridge packs
As inflation rises, demand for low-cost packages increases; FMCG companies opt for weight reduction and bridge packs
”In the urban markets, where the per capita income is higher and consumers have the spending power, we have taken up prices in larger packs. In the rural ...
Aircraft lessor SMBC Aviation closes $7 billion deal for Goshawk opponent, sources say
Aircraft lessor SMBC Aviation closes $7 billion deal for Goshawk opponent, sources say
Last year, the world’s two largest aircraft leasing companies, Ireland’s AerCap and GE’s leasing arm GECAS, merged in a deal worth more than $30 billion. ...
The government will soon pass an overhaul of the Banks Board Bureau
The government will soon pass an overhaul of the Banks Board Bureau
According to reports, the government will shortly complete the reform of the Banks Board Bureau (BBB), whose extended two-year tenure ended last month. The ...
Venezuela plans to sell shares of state-owned companies
Venezuela plans to sell shares of state-owned companies
The country is still under economic sanctions imposed by the U.S. and other countries that prevent investors from being able to funnel money to Venezuela’s ...
Musk says $44 billion Twitter the transaction was suspended due to false account data
Musk says $44 billion Twitter the transaction was suspended due to false account data
“Twitter deal temporarily on hold pending details supporting calculation that spam/fake accounts do indeed represent less than 5% of users,” Musk told his ...
Steel prices have fallen by more than 10% as the coal crisis wreaks havoc on secondary steel producers
Steel prices have fallen by more than 10% as the coal crisis wreaks havoc on secondary steel producers
”Our costs have increased by 50 per cent despite a compromise on quality of inputs, secondary steel producers using Direct Reduced Iron (DRI) require high ...
Maruti Suzuki has set aside Rs 5,000 crore in capital expenditure for the current fiscal year
Maruti Suzuki has set aside Rs 5,000 crore in capital expenditure for the current fiscal year
Responding to a query on Suzuki’s plans to invest in Gujarat for local manufacturing of Battery Electric Vehicles (BEV) and BEV batteries, Seth said: ”This ...
The Ninth Lokmat Women's Summit 2022 – Udne ki Asha is being held in Nagpur by Lokmat Media Group
The Ninth Lokmat Women’s Summit 2022 – Udne ki Asha is being held in Nagpur by Lokmat Media Group
Chairperson of Maharashtra State Commission for Women Rupali Chakankar, Amravati Police Commissioner Arti Singh, Founder of Indian Muslim Women’s Movement ...
Norwegian Air posts first-quarter loss, signals fuel cost impact on recovery
US Airlines presses to lift pre-departure testing requirements
Airlines for America, an industry group, said Friday a survey of its carriers estimated that dropping testing rules would bring in an additional 4.3 million ...
Due to shortages, major US stores are restricting the purchase of baby formula
Due to shortages, major US stores are restricting the purchase of baby formula
Due to a supply constraint, U.S. stores such as Target Corp, CVS Health Corp, and Walgreens Boots Alliance have reduced orders of infant formula. The ...
Show next
We will be happy to hear your thoughts

Leave a reply

Compsmag - Latest News In Tech and Business
Logo