S3 Ep50: Two 0-days plus another 0-day plus a fast food bug [Podcast]
September 15 2021Bugs! So many bugs! Latest episode - listen now...
Read moreMicrosoft Patch Tuesday, September 2021 Edition
September 14 2021Microsoft today pushed software updates to plug dozens of security holes in Windows and related products, including a vulnerability that is already being exploited in active attacks. Also, Apple...
Read moreApple products vulnerable to FORCEDENTRY zero-day attack – patch now!
September 14 2021Double trouble: two zero-days, patched in the same emergency update. So please don't delay - patch today!
Read moreLightning Cable with Embedded Eavesdropping
September 7 2021Normal-looking cables (USB-C, Lightning, and so on) that exfiltrate data over a wireless network. I blogged about a previous prototype here.
Read moreZero-Click iPhone Exploits
September 1 2021Citizen Lab is reporting on two zero-click iMessage exploits, in spyware sold by the cyberweapons arms manufacturer NSO Group to the Bahraini government. These are particularly scary exploits, since they...
Read moreMore on Apple’s iPhone Backdoor
August 20 2021
In this post, I’ll collect links on Apple’s iPhone backdoor for scanning CSAM images. Previous links are here and here.
Apple says that hash collisions in its...
Read moreApple’s NeuralHash Algorithm Has Been Reverse-Engineered
August 18 2021
Apple’s NeuralHash algorithm — the one it’s using for client-side scanning on the iPhone — has been reverse-engineered.
Turns out it was already in iOS 14.3, and...
Read moreApple Adds a Backdoor to iMessage and iCloud Storage
August 10 2021
Apple’s announcement that it’s going to start scanning photos for child abuse material is a big deal. (Here are five news stories.) I...
Read moreLatest episode - listen now!
Read moreLatest episode - listen now!
Read more
Recent Comments