Kaspersky Lab has released a free triangle_check utility to detect traces of infection in a backup copy of an Apple device. This utility is related to the warning issued by the FSB and researchers who discovered targeted attacks on iOS devices, which they called “Operation Triangulation”. The purpose of these attacks was to “invisibly inject a spy module into the iPhone of company employees – both top management and middle managers”. Kaspersky Lab has provided detailed instructions on how to use triangle_check under different platforms (Windows, Linux and macOS), as well as how to create a device backup. This utility helps to automate the process of manually searching for indicators of compromise.
