The Trend Micro report reveals a targeted attack against iOS users in Hong Kong using mobile malware via local news links. The attack chain involves a watering hole attack tactic and an infection chain. The report details the exploits used, including a JavaScriptCore exploit and a kernel exploit. The iOS malware, lightSpy, includes various modules for stealing information and executing shellcode. The Android malware, dmsSpy, is also discussed, including its distribution and behavior analysis. The report concludes with an appendix.
