Coruna iOS Exploit Kit Reuses Code from 2023 Operation Triangulation

Kaspersky researchers identified that the kernel exploit used in the recently discovered Apple iOS exploit kit named Coruna reuses code from the 2023 Operation Triangulation campaign. The exploit targets two security vulnerabilities in iOS, though specific CVE IDs were not mentioned in the findings. Coruna was initially reported without sufficient public evidence to link it to Triangulation, but updated analysis confirmed the connection. The attacks involving Coruna have been described as mass-scale, though no specific victim details or geographic scope were provided. The reuse of the 2023 exploit code suggests an evolution of the original threat actor’s techniques. No additional technical details about the vulnerabilities or attack vectors were disclosed.