Conversation

I can confirm. Someone who works at a premiere shop that sells 0days to governments told me persistence is the hardest thing on iOS.

Quote Tweet

nex

@botherder

Feb 18, 2020

With increasing reports on the difficulty for attackers to maintain persistence over some mobile devices, I find myself thrilled to for once actually seriously recommending “turning your device off and on again”.

GIF

134

457

Replying to

With upcoming iphone release with CPU supporting memory tagging, say bye bye to RCE forever

Replying to

and

i’ve heard this one before

Replying to

and

Quote Tweet

Replying to @cynicalsecurity @halvarflake and 2 others

The tags are only 16-bit. At best it can provide a 14/15 chance of catching generic memory corruption bugs. Can do better and provide deterministic protection against a subset of bugs such as all sequential overflows and with some effort use-after-free within N allocations.

8:28 PM · Feb 18, 2020Twitter Web App