Re: Are iPhones subject to ransomware attacks?

Liste des GroupesRevenir à mpm iphone 
Sujet : Re: Are iPhones subject to ransomware attacks?
De : StendeJood (at) *nospam* nospam.net (Sten deJoode)
Groupes : misc.phone.mobile.iphone comp.sys.mac.system comp.mobile.ipad
Date : 19. Mar 2024, 22:41:10
Autres entêtes
Organisation : To protect and to server
Message-ID : <utd0pn$1hqpd$1@paganini.bofh.team>
References : 1 2 3 4 5 6 7 8 9 10 11 12 13 14
User-Agent : 40tude_Dialog/2.0.15.41 (Beta 38)
On Tue, 19 Mar 2024 11:18:07 -0400, WolfFan wrote:
 
a zero-day is, by definition, something new and unexpected.

That's not entirely correct, where the nuance is where it matters.

Why do you think iOS is the most exploited smartphone OS in history?
 <https://www.cisa.gov/known-exploited-vulnerabilities-catalog>

Given Apple has more zero-days in iOS by many times over than Android,
the real distinction of what a zero day is for such an Apple newsgroup,
is that *it's only Apple who is unaware of its zero-day bugs*.

Everyone who is writing malware knows about these zero-days before Apple,
and, the proof is all of them are _reported_ to Apple (who was clueless).

Apple's QA by all accounts is atrocious. So bad, the same zero-day bugs
shows up in subsequent releases, even after Apple fixed them once.

That's how terrible Apple's QA is (even Federighi complained about QA).

Apple has had so many zero-day bugs in the kernel and webkit that I stopped
counting, but the point is that they sell these things on the black market.

What a zero-day is, in this context, is a bug that is known to everyone
(who is writing malware) but which is not yet known to Apple.

It is perfectly
possible to block known attacks.

And yet Apple's QA is so non existent that multiple times they had to fix
the same zero-day bug in subsequent releases, because they made it again!

it is impossible to block unknown attacks,

What? Are you nuts?
You block against what can happen.

Such as buffer overflows (which are the root of a bulk of the attacks).

What you're really saying is Apple spends all their money on advertising
that they tested the system instead of actually testing the system.

It's why only one company in all of high tech has the lowest R&D spend in
the world - adn that's Apple. Steve Jobs had to defend it then and it's
still the case now that Apple spends 10 times more on advertising than R&D.

as YOU HAVE NO FUCKING IDEA WHERE THE ATTACK IS COMING FROM OR HOW IT WILL BE
MADE, BECAUSE THE ATTACK IS *NEW* AND *FROM AN UNEXPECTED SOURCE*.

WTF? Are you nuts?

Google reported that Apple hasn't ever tested, nor even exercised about 10%
of teh code in iOS that Google analyzed for the Project Zero effort.

Google counted something like a dozen cases (which they responsibly
reported to Apple) where the code was so bad, it was essentially a bug in
and of itself.

Since Apple never tests their iOS code sufficiently, it's clear that Apple
could spend some of that money they spent in advertising a silly yellow
iPhone instead on some QA in the R&D run by Craig Federighi.

Don't you remember the leaked email from Federighi telling QA to start
testing? Apple has _never_ sufficiently tested any of its code for bugs.

Apple advertises white papers instead saying it's impossible to have them.

You are incapable of reading for comprehension.

You have no idea that Apple's basic strategy is to spend money on marketing
instead of on R&D which is one of the reasons why iOS is, by far, the most
exploited smartphone operating system in the history of smartphones.
 <https://www.cisa.gov/known-exploited-vulnerabilities-catalog>

Apple never finds its zero-day bugs... hackers find them for Apple.

Date Sujet#  Auteur
15 Mar 24 * Are iPhones subject to ransomware attacks?31<bp
15 Mar 24 +* Re: Are iPhones subject to ransomware attacks?3Sten deJoode
16 Mar 24 i`* Re: Are iPhones subject to ransomware attacks?2Jolly Roger
16 Mar 24 i `- Re: Are iPhones subject to ransomware attacks?1Sten deJoode
15 Mar 24 +- Re: Are iPhones subject to ransomware attacks?1Your Name
16 Mar 24 `* Re: Are iPhones subject to ransomware attacks?26Jolly Roger
16 Mar 24  +* Re: Are iPhones subject to ransomware attacks?3Chris Schram
16 Mar 24  i`* Re: Are iPhones subject to ransomware attacks?2Jolly Roger
16 Mar 24  i `- Re: Are iPhones subject to ransomware attacks?1Sten deJoode
16 Mar 24  +* Re: Are iPhones subject to ransomware attacks?2<bp
16 Mar 24  i`- Re: Are iPhones subject to ransomware attacks?1Jolly Roger
16 Mar 24  `* Re: Are iPhones subject to ransomware attacks?20Sten deJoode
16 Mar 24   `* Re: Are iPhones subject to ransomware attacks?19Jolly Roger
17 Mar 24    `* Re: Are iPhones subject to ransomware attacks?18Sten deJoode
18 Mar 24     +* Re: Are iPhones subject to ransomware attacks?15Jolly Roger
18 Mar 24     i+* Re: Are iPhones subject to ransomware attacks?10David Brooks
18 Mar 24     ii+- Re: Are iPhones subject to ransomware attacks?1Your Name
18 Mar 24     ii`* Re: Are iPhones subject to ransomware attacks?8Jolly Roger
18 Mar 24     ii `* Re: Are iPhones subject to ransomware attacks?7WolfFan
18 Mar 24     ii  `* Re: Are iPhones subject to ransomware attacks?6Jolly Roger
18 Mar 24     ii   +* Re: Are iPhones subject to ransomware attacks?4WolfFan
19 Mar 24     ii   i`* Re: Are iPhones subject to ransomware attacks?3David Brooks
19 Mar 24     ii   i `* Re: Are iPhones subject to ransomware attacks?2WolfFan
19 Mar 24     ii   i  `- Re: Are iPhones subject to ransomware attacks?1Sten deJoode
18 Mar 24     ii   `- Re: Are iPhones subject to ransomware attacks?1David Brooks
18 Mar 24     i`* Re: Are iPhones subject to ransomware attacks?4Sten deJoode
18 Mar 24     i `* Re: Are iPhones subject to ransomware attacks?3Jolly Roger
18 Mar 24     i  `* Re: Are iPhones subject to ransomware attacks?2Sten deJoode
19 Mar 24     i   `- Re: Are iPhones subject to ransomware attacks?1Jolly Roger
18 Mar 24     `* Re: Are iPhones subject to ransomware attacks?2WolfFan
18 Mar 24      `- Re: Are iPhones subject to ransomware attacks?1Jolly Roger

Haut de la page

Les messages affichés proviennent d'usenet.

NewsPortal