Google researchers revealed "Coruna," a sophisticated iPhone hacking toolkit exploiting 23 iOS vulnerabilities, likely developed by US government-linked hackers, which has reportedly been sold to the Russian government by a former employee of US contractor L3Harris.
The emergence of the Coruna iPhone hacking toolkit, allegedly developed by US contractor L3Harris's division, underscores the critical need for implementing robust insider threat detection mechanisms within cybersecurity operations. For a CISO or security operations leader, this situation highlights the importance of securing sensitive tools and ensuring thorough vetting and monitoring of employees to mitigate the risk of state-sponsored exploits being misappropriated and used by adversarial entities.