Company Pays Hackers $3 Million for Windows, iPhone Zero-Day Exploits

Discussion in 'other security issues & news' started by mood, Apr 26, 2018.

  1. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    8,812
    Company Pays Hackers $3 Million for Windows, iPhone Zero-Day Exploits
    Dubai startup seeking unpatched flaws to sell them to govts
    April 26, 2018
    https://news.softpedia.com/news/com...windows-iphone-zero-day-exploits-520867.shtml
     
  2. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,804
    I bet they just plug the greykey device into the USB so it can masquerade as a keyboard to then brute force the pitifully insecure 6 char password.
    I don't have a USB keyboard to test that with, but the time frames described for the greykey device to unlock a phone are definitely in the realm of brute force attacks.
    To test this theory we need an iPhone and a USB keyboard, if the USB keyboard is active while the phone is locked and can be used to enter the unlock code, then there is your exploit.
    If that is the case, to mitigate would be to find a way to disable the usb keyboard driver until after the device is unlocked.
     
    Last edited: Apr 26, 2018
  3. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    10,181
    Location:
    Slovenia, EU
    Well the question still remains how you disable iPhone's anti-brute force protections (longer times it takes to enter each new guess and bricking device after 10 unsuccessful attempts). Guessing is not a hard part, circumventing their protections is whole other story.
     
  4. RockLobster

    RockLobster Registered Member

    Joined:
    Nov 8, 2007
    Posts:
    1,804
    When you think about it, it is probably a moot point.
    For this company to market the device and for law enforcement to buy it we might assume they all have reason to believe Apple is not anytime soon going to patch the "exploit".
    There is only one way they could all know that.
    Further to that point, if hackers could acquire one of the devices and find out how it works, a multi billion dollar corporation like Apple sure could too.
    So it would not take much of a stretch to assume Apple is complicit in this and if that is the case, it's game over already.
     
  5. Minimalist

    Minimalist Registered Member

    Joined:
    Jan 6, 2014
    Posts:
    10,181
    Location:
    Slovenia, EU
    Crowdfense platform to allow researchers to safely submit, discuss and sell 0day exploits
    https://www.helpnetsecurity.com/2018/08/10/crowdfense-platform/
     
Loading...
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.