Everybody go update your iPhones.

The new 0-click vuln exploited by NSO Group is sent via a malicious image in iMessage.

citizenlab.ca/2023/09/blastpas

@evacide Either some exploit developer somewhere just happens to really like taking apart iMessage, or Apple has a serious flaw in their entire systems security design.

Follow

@jaseg

It could be that NSO Group have a mole working inside Apple, someone on the inside who is deliberately planting the needed kind of security holes "by mistake".

@evacide

@eliasr As far as I understand, in iOS by design iMessage just happens to sit in an uniquely vulnerable spot. Having done some reverse engineering myself, I can totally see how with sufficient funding you can develop these exploits without any moles, or even a source code leak.

Sign in to participate in the conversation
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml