3
Researchers discovered a vulnerability in Apple SoC used to target iPhones running on iOS versions up to iOS 16.6. The hackers initiated 0-click iMessage attacks, bypassing hardware-based security protections and gaining complete control over the devices. The flaw in the SoC played a critical role in the Operation Triangulation attacks, allowing access to user data. The researchers found an unknown hardware feature, possibly for debugging or testing, that enabled the bypass. Extensive reverse engineering and analysis of Memory-Mapped I/O (MMIO) addresses were used to detect and understand the vulnerability.
