In absolute awe that NSO would send an iOS jailbreak via SMS to an already paranoid target. The target simply forwarded the URL to a friend.
-
-
The lack of exploit analysis skill has consequences. No IOCs for pre-compromise detections. You have to wait until you get 0wned to find it.
-
People wondering why I'm not surprised: Amateurs produce iOS jailbreaks once a year (Pangu et al). Professionals won't be any less skilled.
-
People asking abt iOS10: Unlikely that existing toolkit works out of the box on 10. Even if underlying vulns still present, kit prob broken.
-
Absolutely true. 9.3.5 protects you from NSO customers, and expected copycat attacks once exploits become public. iOS10 more meaningful.
-
lol meant to subtweet Charlie on that last one. He's right. This jailbreak likely affects 10s or 100s of people.https://twitter.com/0xcharlie/status/768888565648412672 …
-
@0xcharlie doesn’t that depend on who the other customers are? -
IMHO exposure is vastly limited by the distribution method. SMS phishing can only claim victims so fast.
-
have you seen any exploit masq’ing as a carrier settings upgrade? Would that be possible?
- 1 more reply
New conversation -
-
-
its a native exploit
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
...about the sandboxing
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
-
-
can you elaborate ?
Thanks. Twitter will use this to make your timeline better. UndoUndo
-
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.