"New LightSpy Spyware Targets iOS with Enhanced Capabilities"

Security researchers at ThreatFabric have discovered a newer version of the LightSpy spyware, known for targeting iOS devices.  The researchers noted that it has been expanded to include capabilities for compromising device security and stability.  This latest version, identified as 7.9.0, is more sophisticated and adaptable than the original version, featuring 28 plugins compared to the 12 observed in the earlier version. The researchers noted that seven of these plugins are specifically designed to interfere with device functionality, with capabilities that include freezing the device and preventing it from rebooting.  The spyware gains initial access by exploiting known vulnerabilities in Safari and escalates privileges using jailbreak techniques, enabling it to access core device functions and data.  To support these malicious activities, the researchers identified five active command-and-control (C2) servers linked to the iOS version of LightSpy.

Infosecurity Magazine reports: "New LightSpy Spyware Targets iOS with Enhanced Capabilities"