Google Outlines iPhone Vulnerabilities That Let Malicious Websites Steal User Data for Years, Now Fixed

[v3rlon]

Wow, dealing with you is certainly frustrating. Your response to questions is often "Source" or "Logical fallacy" or some similar nonsense. Google does not put huge billboards on buildings or put up slides during their keynote presentations stating that PRIVACY is so important to them and they really focus on it. But your beloved Apple does so my question is a very sound question to which you have no concrete response. I never said that Google values security highly but Apple certainly states publicly that it does. Therefore, you should be able to answer my question quite easily but obviously Apple and its actions does not provide you with credible information to do so.

No problem. But it would be easier and more honest if you just said that you cannot answer the question rather than stating "Logical fallacy. I could ask you..."

Because if Google put up such a billboard, it’s technically informed user base would die laughing. It MIGHT be enough to actually get a corporate entity charged with mass homicide.

 

[realtuner]

How do you know it wasn't widespread? You have absolutely no idea who knew about it, or how it was exploited to say anything like that.

Based on Google’s own comments. It was aimed at a specific community and the sites only received “thousands” of visitors per week. Compared to the number of active iOS users that’s a tiny percentage.

So, not widespread.

 

[lowendlinux]

I just mean that they have no right to speak about iPhone vulnerabilities, when the vast majority devices running their OS are far more vulnerable. Have to hand it to them though, they did right by making their own smartphones. The Pixel line, and others that use vanilla Android, are definitely competitors when it comes to security.

Sure they do, and you’re entitled to find vulnerabilities demonstrate them then
post about them when they’re fixed.

 

[enfanteribl]

Yeah, why no links?

I can’t see any list of links either. Is this buried in the report somewhere?

 

[Emanuel Rodriguez]

Sure they do, and you’re entitled to find vulnerabilities demonstrate them then
post about them when they’re fixed.

I don't have to find or post anything. The vulnerabilities are out there, in the wild, unpatched, because many Android phones do not receive the patches.

Just because they fixed a vulnerability, that doesn't mean you don't have it, especially when you can't trust your update system to get the patch to you.

 

[C DM]

I just mean that they have no right to speak about iPhone vulnerabilities, when the vast majority devices running their OS are far more vulnerable. Have to hand it to them though, they did right by making their own smartphones. The Pixel line, and others that use vanilla Android, are definitely competitors when it comes to security.

Anyone who finds and reports vulnerabilities can certainly speak about them when appropriate.

 

[Alan Wynn]

The same reason they released Safari for Windows, to not let Google dominate the Web like Microsoft did. It is already reported that YouTube works better in Chrome over other web-browsers. Soon it will be Maps, GDocs, Gmail... you know how it works

Unlike Internet Explorer which did not run on macOS, Chrome does, so it does not matter in the same way. Apple provides its own maps service on its own platform, so does not really need to worry about how well Google Maps runs in other browsers. It is irrelevant to their customers (even if the use them, as they run fine on the platform). The same is true for the other two services. Apple did improve Safari on iPadOS to ensure it supports Google Docs. Again, as long as Google is making more money from iOS users than they are from Android users, they will ensure that their products run on the platform.

Apple should keep improving iWork and iCloud to ensure their are alternatives to the Google apps for their users, (and I think it would be great to begin pushing iWork at Work to compete with Google Docs), but beyond that, I still see no reason for them to care about the running their own search engine and having a browser on Window.

 

[digthewell]

Let's all just think about the number of exploits that Android has been vulnerable to... No OS is infallible, there will always be vulnerabilities and a dedicate group of people trying to find one. But it depends on how fast the company responds to such exploits, patches them and the overall exposure of users to such vulnerabilities.

 

[Emanuel Rodriguez]

Anyone who finds and reports vulnerabilities can certainly speak about them when appropriate.

The vulnerabilities are already reported. Most Android devices stop receiving updates quite early, so it doesn't matter.

 

[C DM]

The vulnerabilities are already reported. Most Android devices stop receiving updates quite early, so it doesn't matter.

Not sure what this haas to do with Android. My comments were about the statements in relation to Google's Project Zero team and their reporting of the issues.

 

[Emanuel Rodriguez]

Not sure what this haas to do with Android. My comments were about the statements in relation to Google's Project Zero team and their reporting of the issues.

Yes, but you were replying to my comment, which was about Android.

 

[C DM]

Yes, but you were replying to my comment, which was about Android.

Not the part that I was responding to:

I just mean that they have no right to speak about iPhone vulnerabilities