How is this related to the article? The person in question is a security researcher not an app developer.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Researcher Says Apple Ignored Three Zero-Day Security Vulnerabilities Still Present in iOS 15
- Thread starter MacRumors
- Start date
- Sort by reaction score
I hear ya' -- The problem is that by the time they iron things out and get to a polished state, they start the cycle all over again with yet another "new" iOS version. It's madness.
Apple’s privacy spiel is comical, can’t believe people actually fall for it. Is iOS more secure than Android? Yes. Is it going to prevent a determined attacker or a nation state from hacking your phone? Hell no.
Then I'd say that's nonsense. History doesn't agree with that perspective.
Apple Iphone Os : CVE security vulnerabilities, versions and detailed reports
Apple Iphone Os security vulnerabilities, exploits, metasploit modules, vulnerability statistics and list of versions
www.cvedetails.com
The worst two years for vulnerabilities were 2015 and 2017. In recent years, the number has been decreasing.
And please compare against Android, which some folks on this thread are trying to claim is somehow "more secure" or doesn't have this problem:
This is the problem with making claims based on "how things feel" or "what seems to be happening".
Last edited:
I am curious to know : is Windows optimized for displays that have their pixel density equivalent to Retina displays ?
Because those @2x images are ~4X as big as the original, it probably explains a good part of it.
Come on Apple get your act together and properly reward the work done by researchers that help secure the platform.
Apple knows marketing is more effective for the naive than real security.
I disagree. Many enjoy getting the new OS version every year. Nice way to keep your device modern with a new look and features for free. Those that don't like it don't have to upgrade.
Apple isn't writing code from scratch every year to release a new OS. It's basically the rolling update you are asking for but don't realize its already occurring. They are just adding to and tweaking existing code.
Now folks in this thread are praising Microsoft? Microsoft is the main reason our foreign adversaries are stealing intellectual property and private data on every citizen in the US. Please stop with the misinformation.
Last edited:
Apple's under attaaaaaaaaaaack. MAYDAY ! Where is Gruber when you need him to rationalize this ?!
Last edited:
Come on guys and gals, Apple just did a big Keynote a few days ago, and we all know that the Keynote was way more important than any zero day vulnerabilities.
Remember the new Apple is Marketing over Functionality/Quality.
Or, these folks did not use the correct way, language, etc. to tell Apple about the vulnerabilities. You know Apple is way too important to listen to just anyone.
Remember the new Apple is Marketing over Functionality/Quality.
Or, these folks did not use the correct way, language, etc. to tell Apple about the vulnerabilities. You know Apple is way too important to listen to just anyone.
Is Chip's Challenge still available anywhere? I haven't played that game in years.Does Chip's Challenge run in 11? I don't own a Windows machine, but that would be the deal breaker.
As someone who works at a large software company (and has some knowledge about folks who report stuff to us and what they say vs. what they do), let me just say that there are usually two sides to a story. Things are sometimes not what they seem. I'll leave it at that.
That being said, shame, shame, if all this checks out.
That being said, shame, shame, if all this checks out.
Not an expert on any of this but feels like a two wrongs not making a right type of situation. Apple should be treating security researchers with a lot more respect. At the same time the researchers shouldn't be going public with the vulnerabilities and putting everyone's devices at risk to prove their point.
At least it sounds like that's what's going on?
At least it sounds like that's what's going on?
He’s a developer who stumbled across the issues.
That’s the dilemma there. Usually security researchers set a timeframe with the companies for public disclosure of issues. For one, they want to get the credit, but more importantly, the companies won’t have any pressure to fix them if they don’t have a deadline, and plus, you don’t know for sure that there aren’t people out there actively using the exploit already. So there’s no point in hiding your discovery forever.
This isn’t the type of behavior I would expect from a savvy tech company
Apple needs to do better in this regard. It shouldn't take negative press to inspire them to take action.
Well they are partially addressing this by saying they'll starting continuing to support the previous iOS major version with security updates when a new major iOS version is released. Admittedly, it'd be even better if they'd continue optimizing iOS 14 with general bug fixes and performance enhancements and not just addressing specific security vulnerabilities only, but at least they're providing an alternative to iOS 15 now.
Perhaps also OsX comes with the Arm and Intel version?
You can download it from archive.org, but I think it only runs on 32-bit systems. I have XP 7-64, and 10 in VMWare. It only runs in XP. I thought I had it on a Win7-32bit machine at one point.
The videos about Apple's past antics starring that guy in the picture of the billboard are funny!
Many of the replies here are FUD likely from other desperate phone makers. I know first hand people who do this work and have had the exact opposite experience with Apple.
Well, when you consider that the ONLY way a security researcher would be content with a device’s security is that it’s kept in the box, in a safe in an undisclosed location, with a 70 word passphrase not known to the user, there’s really no useful way to increase engagement with the security research community.
Security community? Sure, those are the folks that both understand that having an easy way into and out of your house is a good thing, AND that having a door lock means you don’t have to ensure that all the cabinets in your single person home have combination locks to prevent intruders from getting into both your cleaning products AND your pantry in the act of poisoning your food.
Security Researchers are the folks that say you need to remove all the windows from a house because, while it’s a nice thing to have, it’s just an exploit waiting to happen!
It could be said that if you know the names and personal information of a security researcher, well, are they a “REAL” security professional? I mean, they don’t even know how to keep their own information secure because of their STRONG desire to be a “thing” on social media.