All of this sounds like the beginning of a James Bond movie. Time to go back to a flip phone.
Yeah viruses exist. This isnt a virus.You're not getting it. a site isn't putting something on your phone without your acknowledgement, as you are willingly going to that site. You have to visit that site for that site to do something to your device. Depending on how they set it up will determine if it is with or without acknowledgement, but then the damage is already done. You visited the site, which is all the acknowledgement the site needs.
You or visit requests a GET from their webserver, and the webserver responds with the content. No acknowledgement needed or required.
BL.
All one needs to do is update to 9.2.2 ; problem solved. If it's one thing Apple is good at it is patching up iOS.
No system can be labeled as hack proof.
False. If the exploit isn't released to the public then Apple will have a very hard time finding what exactly to patch up. Expect future iOS builds to be vulnerable until Apple identifies the exact exploits used.
So the nice thing that this is happening to apple is they will now patch it in the very next release. If this was found in the root code of android you might never see a patch like stage fright and stage fright 2.
Hopefully Apple will purchase it (directly or indirectly) and take care of it that way.Actually, if you read correctly it was not disclosed to Apple.
Unless someone tells Apple, it cannot be patched.
This is going to be used by clandestine organizations.
Actually, if you read correctly it was not disclosed to Apple.
Unless someone tells Apple, it cannot be patched.
This is going to be used by clandestine organizations.
Apple would need to go through an intermediary.See post #137, immediately before yours.
Apple would need to go through an intermediary.
The company was not interested in disclosing to Apple at this time.
Since they know their customers and I'm sure they will be under NDA, Apple may have a tough time getting their hands on it.
All you need to do is put enough teeth in the contract.
Someone that discloses could find themselves completely broke and unable to collect on any money that Apple would pay.
I'm just going to go grab a bag of popcorn...........
I'm sure it wouldn't be hard to go through some intermediary if needed. That said, while they weren't interested in disclosing the details to Apple, it doesn't mean they wouldn't be interested in selling those same details to Apple.Apple would need to go through an intermediary.
The company was not interested in disclosing to Apple at this time.
Since they know their customers and I'm sure they will be under NDA, Apple may have a tough time getting their hands on it.
All you need to do is put enough teeth in the contract.
Someone that discloses could find themselves completely broke and unable to collect on any money that Apple would pay.
I'm just going to go grab a bag of popcorn...........
Hmm.
If the exploit will be available commercially to those willing to pay the price, you don't think Apple will manage to secure a copy one way or the other?
Really?
The point i was trying to make is that, without knowing which exploits are used, Apple is going to have a hard time figuring out which holes to plug exactly. I'm not saying that they can't get their hands on the exploit, but if they do then obviously a fix will be out.
You under some sort of illusion thinking US government is still for , of and by the people? That ended shortly after the end of World War II.This is probably just the tip of the iceberg. There are likely other exploits like this that just don't get publicized.
The sentence about "government organizations in need of specific and tailored cybersecurity capabilities" is particularly galling. The government's role should be to protect the country from this kind of thing, not to keep it secret and exploit it themselves.
It may be time to put up different kind of bounty. One where people that do this **** get bounty on their heads. Kind of bounty that leads to little lead high speed projectiles that won't be stopped by the money, unless they stack it around themselves hiding behind it.Why? It's Apple's bug. Someone found a bug Apple doesn't know about. Why should they be required by law to tell Apple about it?
Apple should find their own bug, or, you can find it, and tell Apple about the exploit for free.
Like it would matter if Apples's shell company goes broke or is sued. Can't collect crapola from empty bucket.Apple would need to go through an intermediary.
The company was not interested in disclosing to Apple at this time.
Since they know their customers and I'm sure they will be under NDA, Apple may have a tough time getting their hands on it.
All you need to do is put enough teeth in the contract.
Someone that discloses could find themselves completely broke and unable to collect on any money that Apple would pay.
I'm just going to go grab a bag of popcorn...........
I simply do not understand anymore why people would want to open up their phones to hackers. I understand governments are one thing since obviously they can get around iPhone security regardless of jailbreak status but at least we can temporarily comfort ourselves with the promise that our data is being kept hidden in some government data center... Hackers though? Really? People that will sell your data and use your phone/devices as bots? It's just stupid. I can't think of any real practical benefit behind jailbreaking that makes it worthwhile, whether it be on Android of iOS.
Ok, f.lux is an exception that I would REALLY like to see on my iPhone...
Someone need to publish names and home addresses of the people offering bounty, those creating exploit, and those buy it. Let's get something going here exploiting their privacy.These guys are scum. Selling our privacy and security of millions down the river for personal profit. For many people in dictatorial countries with oppressive regimes, providing exploits to these governments to gain access to iPhones could result in serious consequences – prison, torture, or worse. I don't know how people could sleep at night operating this kind of business.
So the nice thing that this is happening to apple is they will now patch it in the very next release. If this was found in the root code of android you might never see a patch like stage fright and stage fright 2.