The Predator spyware from Intellexa employs an innovative zero-click infection method called “Aladdin,” which infects devices through malicious advertisements without user interaction. Ongoing investigations reveal complex delivery networks across multiple countries and sophisticated exploits targeting devices and mobile networks. #Intellexa #Aladdin #PredatorSpyware #SamsungExynos #ZeroDayExploits
Keypoints
- Intellexa’s Predator spyware uses the “Aladdin” zero-click infection mechanism via malicious ads.
- The malicious ads are served through a complex international advertising network, making detection difficult.
- Other delivery vectors include exploits targeting Samsung Exynos devices and potentially radio or physical access attacks.
- Intellexa is among the top vendors exploiting zero-day vulnerabilities since 2021, developing and purchasing exploits.
- Despite sanctions and investigations, Intellexa remains active, with recommended defenses including advanced protection modes.