Skip to main content

Operation Triangulation: Kaspersky launches a malware detection tool June 2023 by Kaspersky

ARCHANGEL Firewall of Next Generation from PT SYDECO

Following the report published on the Operation Triangulation attack campaign targeting iOS devices, Kaspersky researchers have released a special "triangle_check" utility that automatically scans for malware infection. The tool is publicly shared on GitHub and available for macOS, Windows and Linux.

On 1 June, Kaspersky researchers reported a new mobile APT targeting iOS devices. The campaign uses zero-click exploits transmitted via iMessage to install malware and take full control of the device and user data, with the ultimate aim of spying on users discreetly. The victims included Kaspersky employees, but the company's researchers believe that the scope of the attack goes far beyond the organisation. By continuing their investigation, Kaspersky researchers intend to provide greater clarity and detail on the global proliferation of this spyware.
The initial report already included a detailed description of the mechanisms for self-checking traces of compromise using the MVT tool. Today, Kaspersky has published a special utility called 'triangle_check' on GitHub. This utility, available for macOS, Windows and Linux in Python, allows users to automatically search for traces of malware infection and thus check whether or not a device has been infected.
Before installing the tool, users must first make a backup of the device. Once the backup copy has been created, the user can install and run the tool. If indicators of compromise are detected, the tool displays a "DETECTED" notification confirming that the device has been infected. The "SUSPICION" message indicates the detection of less clear indicators of probable infection. No trace of compromise" is displayed if no IoC has been detected.
"Today, we are proud to release a free public tool that allows users to check if they have been affected by the sophisticated new threat. With multi-platform capabilities, 'triangle_check' allows users to scan their devices automatically," commented Igor Kuznetsov, head of the EEMEA unit of Kaspersky's Global Research and Analysis Team (GReAT). "We strongly encourage the cybersecurity community to join forces in researching this new APT, and together build a safer digital world."

Comments

Popular posts from this blog

 Hospital Security in Question In a recent article titled "Cyberattacks: Public and Private Hospitals, Is the Worst Yet to Come?", Jean-Michel Tavernier1 provides a detailed analysis of why the medical sector is a prime target for hackers. He highlights the vulnerabilities that allow hackers to access sensitive data such as medical records, insurance information, and payment details. The compromise of this data can have severe consequences for individuals' privacy, financial security, and even personal safety, not to mention the financial damage to institutions and the risks to the quality of care provided to patients. System Vulnerabilities Tavernier points to the "excessive interdependence of the entire healthcare chain." Hospitals collaborate with a multitude of interconnected providers and partners, creating numerous opportunities for attackers. He suggests managing the attack surface (ASM), which means controlling and securing all entry points where unautho...
                                                                     ERRARE HUMANUM EST   The Inescapable Nature of Human Error and Its Implications in Cybersecurity To err is human; one could even say it is a defining characteristic of humanity. Who has never made a mistake, whether out of distraction, ignorance, or because it was provoked? No one is immune to making mistakes, and most of the time, they are forgivable, even if their consequences can be very damaging. However, the fundamental, unforgivable error is doing nothing to avoid situations that lead to mistakes. Thus, to minimize errors due to distraction, one should avoid multitasking (for example, a surgeon operating should not be distracted by a nurse recounting her latest adventures) and refrain from performing actio...

KEUANGAN & DATA PRIBADI PEMAIN GAME ONLINE DALAM BAHAYA

Melindungi Gamer Online: Memahami Risiko dan Solusi Dalam beberapa tahun terakhir, dunia game online telah mengalami pertumbuhan eksponensial, sejalan dengan meningkatnya nilai aset game. Namun, lonjakan popularitas ini juga membawa segudang risiko yang mengancam para pemain dan operator. Dari upaya peretasan dan pencurian akun hingga transaksi yang tidak sah dan eksploitasi data, bahaya yang mengintai di dunia digital selalu ada. Mengingat tantangan-tantangan ini, sangat penting untuk menjelaskan pentingnya langkah-langkah perlindungan yang kuat dan solusi inovatif. Memahami Lanskap Aset game, yang terdiri dari mata uang virtual, item, dan akun, adalah sumber kehidupan ekonomi game online. Nilainya melampaui ranah virtual, bahkan sering kali melampaui transaksi di dunia nyata. Meskipun demikian, perlindungan konsumen tradisional yang diberikan oleh layanan perbankan dan pembayaran tidak ada di ranah game. Operator platform game sering kali mengadopsi pendekatan laissez-faire, membuat ...