![[H]ard|Forum](/styles/hardforum/xenforo/logo_dark.png){kind=logo}
I've read it called zero-click but I'm not sure if they're referring to this. What's interesting is that this is done through iMessage which was already shown to have vulnerabilities through Beeper. What's also interesting is that this attack used hardware that nobody knew about in iPhones. All Apple can do is block access to parts of the memory.
try this one:
no it's not. has been done since long before snowden released info. your walled garden is a joke.
you don't look at the Hak5 youtube channel do you? ever heard of a wifi-pineapple (just a quick example)
yep, that's why they started making phones to where you can't remove the battery
That was done via a massive Phishing campaign and there was no exploit involved. That was just good old fashioned social engineering at work.
Right?
yeah never underestimate Israeli electronic countermeasures.
The difference is that you're stuck with Apple and their store, where with Google Play and etc you can side load. Since most Apple users use iMessage and other Apple software, it makes it easier to find kinks in the Apple armor. With Android users you don't know if they're using Google Messenger, Whatsapp, Samsung, and etc. They could have been using Beeper. But in this case, this was a hardware flaw that nobody else knew about besides Apple who fixed it earlier this year since this doesn't work on 16.3 and up. If I had to guess, people either don't like to update their iPhones in fear of updates slowing it down, or because of laziness.
Thanks for that, I have no experience with anything other than an iPhone.
how'd they find the documentation for those unused registers anyhhow?
You probably think that just anyone can break into a bank and into a bank vault and have zero issues because 'just anyone' can buy the tools necessary to enter into said vault. In fact banks are just straight up dumb, everyone should simply walk in and take their money. All the tools necessary to penetrate them already exist in the open market.
I'd imagine they poke at register locations and observe how they react. I think I saw this in a video from Modern Vintage Gamer where hardware tends to have unused registers and they simply call to them to see what they do. To give you an idea, even this Triangulation is old as you can Jailbreak iOS 17 with the Checkm8 exploit which is also a hardware exploit.
To give you an idea the chain of events needed for this to work, an iPhone user would need to have iMessage installed and Safari. Due to Apple requiring all web browsers on iPhone to run Webkit, I highly doubt you could avoid this exploit even if you could somehow remove Safari. You can't remove these apps either. iMessage, True Type Font, Safari, Kernel, and even JavaScript. It also goes to show that end to end encryption in iMessage wouldn't have done jack. This is the whole all your eggs in one basket vs eggs spread out situation.
I'm sure they are aware and are just poking the gvmt to admit it
very good post DukenukemX
The problem with conspiracy theories is that the more people are allegedly involved, the harder it is to keep a secret. Not sure what the exact number is, but once you hit about 500 or 1000 people involved, things will leak. The simpler story is the one more likely to be true.
https://arstechnica.com/security/20...ity-firm-mandiant-pushes-cryptocurrency-scam/
It's also more profitably to sell any discovered vulnerabilities to the highest bidder than to cash in a bounty. Apple knew about the bug and fixed it earlier this year, but so did scrupulous people since 2019. Bug bounties are cheaper but they obviously don't work so well. A better method to find security problems in your code is open source because you have an even bigger diverse group looking at it. As much as Apple users want to believe that Android is less secure, you don't see an issue where people's data was stolen for 4 years without anyway of knowing. It wasn't Apple who discovered it, but Kaspersky. Which one employee had some choice words to say about Apple. Maybe this open source thing has some merit? Not long ago Beeper made iMessage look like their play thing, which was also the same attack vector that Triangulation used for years.
nice cat
I missed that part. Also it sounds worse and less useful.
He said this. He did make it sound like it effects iPhones. Also now he says you can unlock and then lock a device, which is what the problem is about.
But he also says you don't. The idea is that you just need their serial number to lock them out, so I think he means physical access by getting their serial number. He mentions you can buy serial numbers, so there's a chance you bought a locked device.
A quick look on Aliexpress seems to suggest he maybe right. Why else are people selling serial numbers? But yea, no iPhones are listed, just iPads.
You mean this kind of open source eyes?
First, openssh is not installed by default on any Linux distro. Second, that article was from 2018. Third, the worst this does is find the username which isn't going to do much without a password. Of course open source code has bugs, but the idea is that you can find it and fix it quicker than closed source. Apple's method of security requires you to depend on them being on top of things, and they're clearly not. Keep in mind that these are the security bugs we're aware of with Apple, so far. We know the security problems with Android because everyone is downloading the source code and looking at it. We have projects like LineageOS, GrapheneOS, Pixel Experience, and dozens more. When did you hear that a bunch of people from Russia using an Android phone had their data stolen and for 4 years nobody knew why? The bug in the source code would have been found immediately.
What's the #1 used OS for servers? It's open source, right? Why did you use OpenBSD? Because when something goes wrong with Windows, you run to Microsoft and hope they know what your problem is and just don't push it off to third party software problems. With something like Linux you can either go to Red Hat or look at it yourself. It's not a small difference, but like 80% of the server market uses some variant of Linux. Even Apple uses Linux servers and not some custom made Mac OS X Server. What is Mac OS X and iOS based on? Darwin, which in itself is open source.
The irony is that Apple's OS's are built from open source but then close the code so nobody can see it, because the licensing allows them. The Darwin code is open source but good luck compiling it without Apple's tools. Let me ask you something, do you think iOS security would get better or worse if the source code was released?
Looks bad when CISA has given federal agencies a due date of January 29 to either update or stop using these products. Looks even worse when a lot of these exploits have long been patched and there doesn't seem to be a practice when users working for the government aren't updating ASAP.
This wouldn't be such a problem if every web browser on iOS wasn't forced to use webkit. Did 17.3 give the EU guys sideloading?
There's rumors, mostly pulled out of thin air, about 17.4 having side loading. I don't think Apple is going to comply with that. Webkit being the mandatory backbone for all browsers is the biggest thing I hate about the iPhone, though. There isn't a perfect phone, unfortunately.
Why did you quote me to post this?
sorry: bad habit
I was just looking for context and was confused.
