The mentioned talk at 37C3 is worth a watch if you're interested in this topic: https://media.ccc.de/v/37c3-11859-operation_triangulation_what_you_get_when_attack_iphones_of_researchers
I’ve had to use some of these sideband access mechanisms for HW debugs before, so it doesn’t seem likely to be nefarious to me. That said, the ones I’ve touched are typically chicken bits of...
I’ve had to use some of these sideband access mechanisms for HW debugs before, so it doesn’t seem likely to be nefarious to me. That said, the ones I’ve touched are typically chicken bits of “switch behaviors” or read data out, not ‘overwrite the damn page table’. The real question is how did they stumble upon the MMIO address, but others have pointed out there have been leaks of debug tools in the past, Samsung (?) leaked the entire PPR (listing all the internal registers/addresses) for an earlier chip, etc.
No. Luckily, as long as you're not a journalist, security researcher, or in politics, you'll likely be fine. Apple is actually exceedingly good as far as security goes: these are astonishing...
No. Luckily, as long as you're not a journalist, security researcher, or in politics, you'll likely be fine.
Apple is actually exceedingly good as far as security goes: these are astonishing hacks. Their Lockdown Mode would have prevented this attack, were it enabled (by blocking PDF attachments in iMessage: and possibly by blocking the Safari exploit). Though given the complexity of the attacks here, chances are the attackers had some way around it...
There is no way to exist and be completely safe. Locks are pickable. Electronic devices are hackable. Communications and movements are surveillable. Walls are breakable. Etc. Ultimately if someone...
There is no way to exist and be completely safe. Locks are pickable. Electronic devices are hackable. Communications and movements are surveillable. Walls are breakable. Etc.
Ultimately if someone with enough motivation and resources wants to get to you, they will. Fortunately very few of us - myself included, of course - are interesting enough to be worth the effort.
You'll be even more scared once you see how common zero-day exploits are on non-mobile computer systems. This is newsworthy precisely because of how good a track record the iPhone has had when it...
You'll be even more scared once you see how common zero-day exploits are on non-mobile computer systems. This is newsworthy precisely because of how good a track record the iPhone has had when it comes to security (and the impressiveness of the hacks themselves, which is in large part because of how tight the security is).
But even going completely off the grid isn't really enough to be safe from someone wiling to put in this kind of effort. The thing that protects you most from this kind of thing is being too inconsequential to be worth it.
Just out of curiosity. Would you be able to give me an example of an off the grid exploit story. I know of the Iran nuclear sites which I found fascinating
Just out of curiosity. Would you be able to give me an example of an off the grid exploit story. I know of the Iran nuclear sites which I found fascinating
The stuxnet example is the most fun, but even physical papers aren't immune to an evil maid attack. The biggest exploits are on the human side of things.
The stuxnet example is the most fun, but even physical papers aren't immune to an evil maid attack. The biggest exploits are on the human side of things.
I would say that depends on your definition of safety / security. But yeah, in general there's no absolute safety. And for Android and iOS, there will likely always be not yet burned zero-day...
I would say that depends on your definition of safety / security.
But yeah, in general there's no absolute safety. And for Android and iOS, there will likely always be not yet burned zero-day exploits.
More low level details/speculation from one of the Asahi devs: https://social.treehouse.systems/@marcan/111655847458820583
The mentioned talk at 37C3 is worth a watch if you're interested in this topic:
https://media.ccc.de/v/37c3-11859-operation_triangulation_what_you_get_when_attack_iphones_of_researchers
I’ve had to use some of these sideband access mechanisms for HW debugs before, so it doesn’t seem likely to be nefarious to me. That said, the ones I’ve touched are typically chicken bits of “switch behaviors” or read data out, not ‘overwrite the damn page table’. The real question is how did they stumble upon the MMIO address, but others have pointed out there have been leaks of debug tools in the past, Samsung (?) leaked the entire PPR (listing all the internal registers/addresses) for an earlier chip, etc.
There really is no way to have a phone and be safe is there?
No. Luckily, as long as you're not a journalist, security researcher, or in politics, you'll likely be fine.
Apple is actually exceedingly good as far as security goes: these are astonishing hacks. Their Lockdown Mode would have prevented this attack, were it enabled (by blocking PDF attachments in iMessage: and possibly by blocking the Safari exploit). Though given the complexity of the attacks here, chances are the attackers had some way around it...
It doesn't matter how good the journalist's phone is, just don't use a car in Malta.
There is no way to exist and be completely safe. Locks are pickable. Electronic devices are hackable. Communications and movements are surveillable. Walls are breakable. Etc.
Ultimately if someone with enough motivation and resources wants to get to you, they will. Fortunately very few of us - myself included, of course - are interesting enough to be worth the effort.
If someone is willing to potentially burn four iOS zero-days to get to me, they're getting me one way or another.
You'll be even more scared once you see how common zero-day exploits are on non-mobile computer systems. This is newsworthy precisely because of how good a track record the iPhone has had when it comes to security (and the impressiveness of the hacks themselves, which is in large part because of how tight the security is).
But even going completely off the grid isn't really enough to be safe from someone wiling to put in this kind of effort. The thing that protects you most from this kind of thing is being too inconsequential to be worth it.
Just out of curiosity. Would you be able to give me an example of an off the grid exploit story. I know of the Iran nuclear sites which I found fascinating
The stuxnet example is the most fun, but even physical papers aren't immune to an evil maid attack. The biggest exploits are on the human side of things.
I would say that depends on your definition of safety / security.
But yeah, in general there's no absolute safety. And for Android and iOS, there will likely always be not yet burned zero-day exploits.