Step 1: Double-Check the Video that MBS Sent to Bezos. There's a similar (or identical) video in this Tweet that appears to be benign:https://twitter.com/abdullahk5/status/932655280701272064 …
-
-
1:25Prikaži ovu nit -
Step 2: Decrypt the "Encrypted Downloader." This should be possible given a forensic extraction of the phone similar to the one that FTI performed. The key should be in WhatsApp's ChatStorage.sqlite file.
Prikaži ovu nit -
Step 3: Double-check the Spikes in Egress Traffic (which they perhaps gleaned from iOS's DataUsage.sqlite file). Clarification about how this data was interpreted would help evaluate their analysis, and contrast it with other possible explanations.
Prikaži ovu nit
Kraj razgovora
Novi razgovor -
-
-
How did the encrypted file perform all this exflitration without being detected for that long ?. It must have decrypted to perform all this data transfer, no?.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.