zlacker
[return to "A case against security nihilism"]
◧
1. bjorns+xs
[view]
[source]
2021-07-20 21:40:52
>>feross+(OP)
How does a bug in iMessage lead to my iPhone being completely taken over by Pegasus? I thought apps were sandboxed on iOS.
Or can they only monitor SMS/iMessages with this entry point?
◧◩
2. x4e+bB
[view]
[source]
2021-07-20 22:49:01
>>bjorns+xs
I imagine they use one exploit to get code execution in iMessage, then another exploit to escape sandbox and execute code in kernel.
◧◩◪
3. wepple+HD1
[view]
[source]
2021-07-21 10:03:40
>>x4e+bB
Yeah. Here’s a 2016 write up when Pegasus (presumably a different deployment) was leaked and reversed:
https://citizenlab.ca/2016/08/million-dollar-dissident-iphon...
[go to top]