A simple search for iOS 12.4 jailbreak will show you the information you requested.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Disputes Some Details of Google's Project Zero Report on iOS Security Vulnerabilities [Updated]
- Thread starter MacRumors
- Start date
- Sort by reaction score
A simple search for iOS 12.4 jailbreak will show you the information you requested.
I don't disagree with your original post I replied to, I think Google should have pointed out more OS'es were affected including their own Android OS, that's all.
I guess Apple thinks Google was unnecessarily scaring people. I saw this story on CNN and other mainstream news outlets. The way it was presented gave the impression this impacted all iOS users. Also if Apple had a fixed the issue before Google’s blog post, did Google not reach out to Apple before they posted it? Did they know if Apple had fixed it? If so why wouldn’t they say so?
Apple uses your data, they just use it for themselves. Nobody honestly really cares, maybe less than 1%. There are maybe more than a billion iOS devices using Facebook, Instagram, YouTube, Gmail, Amazon, Google Maps, a standard mobile data connection, the router provided by their ISP etc...
Apple actually buys mined advertising data from these companies as well. You don’t make really big money being by being nice...and that’s fine, just modern business.
In the blog post it said Chrome was vulnerable..
Android Authority argued in an article a couple days ago that project zero should be split from Google and funded by by all the big tech companies so they're not seen as throwing shade when something like this comes up.
In the end no matter how it's funded or found out I want testing to happen and I want it public veils of secrecy are neat and all that but in the end software needs fixed and sometime the only way for it to be fixed is the public holding people accountable.
When the Google story broke, I spent hours online trying to find a list of affected websites. I read literally dozens of articles (many were nearly verbatim for paragraphs at a time) but NOBODY had the list of compromised websites. I agree with you, now we know why - most US based iPhone users wouldn't have gotten as worried if they knew all the facts and Google's purpose was to alarm as many people as possible 2 weeks before the new iPhones came out.
Perhaps (hopefully) but the difference in Google's vs Apple's timelines is remarkable. Months in the wild and days to fix vs years in the wild and weeks to fix is the difference between an undiscovered bug and gross negligence. I don't think anyone with any understanding of modern software expects operating systems to be 100% exploit free but if Apple is unresponsive and Google claims that erodes a lot Apple's hard-won consumer trust.
Now, that is a really good idea, no conflicts of interest.
Did Google also publish a similar in depth blog on how Android devices were targeted by these sites? Guess the attacks didn’t need to be that advanced but still would be interesting to see how these worked (and likely still do as security patches for older android versions are still not very common among all manufacturers...)
I appreciate that you went through the effort of trying to find those websites. I only briefly looked before giving up. It’s very creepy what China has been up to regarding their own citizens... tracking/monitoring, reeducation camps... very 1984. /shudder
I rely on information from Google's security experts, you rely on Apple blogger. I do not claim to know much about security. You imply that Rene Ritchie knows something about it (he does not).
I appreciate that you went though the effort of trying to undermine China. It is very creepy what United States has been up to regarding their own citizens...tracking/monitoring/wire tapping/ Guantanamo Bay/ forcing Visa applicants disclose their social network account... very 1984/shudder
[doublepost=1567804428][/doublepost]
Apple is not giving up its sweet 3 billion dollars payment from Google.
Sorry, not enough. A single problem isn't enough to make a blanket statement about the security of an OS. Try again.
I never actually implied anything about Rene Ritchie. If you think he knows nothing about security then you should be able to prove it by carefully dismantling his argument point by point.
Google security experts. The same ones who identified a flaw in Safari and exploited it instead of reporting it?
Interesting how nobody wants to tackle this issue and just ignores it like it never happened. A company that exploits flaws is one that shouldn't be trusted, don't you think?
Why would I need to prove that Internet blogger is not a security expert. You decided to use a blogger for your argument. It's akin to using a post by, say, a basketball player on computer security to support your argument. This should be ignored by default unless you can prove that this basketball player (Rene Ritchie) also happens to be a security expert. The onus is on you.
You point about Safari actually proves that Google have the experts. You just do not like the way they used their expertise.
Judging from your irrelevant anti-USA rant, I don’t think you get it - this hack was China targeting Uyghurs. Here’s more info:
https://www.engadget.com/2019/09/01/sites-stealing-iphone-data-targeted-uyghur-muslims/
And more info about China’s re-education camps for Uyghurs:
https://en.m.wikipedia.org/wiki/Xinjiang_re-education_camps
Last edited:
I'll say it again: I never used Ritchie as a source. I didn't post the video, someone else did. You're the one who used an Ad Hominem to try and discredit his argument. So I'll ask you again: Where's your proof?
Are you serious? My point about Safari proves Google have the experts?
I'll tell you what it proves - that Google security experts are criminals who kept an exploit hidden and wrote malware to exploit it for their own benefit. They got fined by he FTC for doing so. That's not a company I would trust.
What. You can’t handle the fact that United States government also spying their own citizens?
Last edited:
Whataboutism. Let’s get back on topic.
This is about a Chinese hack against Uyghurs that Google published a blog about, which Apple is giving us more info on. from Google’s blog, it sounded like a widespread exploit against iOS over years, but it was in fact a targeted attack against Uyghurs in China within a much smaller window of time, which also targeted Windows and Android. Do you have anything relevant to say about the topic? I welcome your thoughts.
Last edited:
So, someone else used Apple blogger to support Apple, I pointed out that the argument is bogus because the source has no security background and now you insist I have to prove that the blogger has no security background. It does not work this way. The blogger by default has not security background (not part of their job description). If someone claims otherwise they'd better prove it. For the time being, it looks like you agree that the use of Ritchie as a source on this matter was questionable.
Google used poor Safari design for legitimate business purposes. You would have a point if you could prove that Google misused user information (for example, if they sold user data) but you can't.
Source?
And The Verge tears apart Apple's entire response as being misleading and unwarranted.
https://www.theverge.com/2019/9/6/2...s-statement-security-google-false-impressions