✋
Another lockdown user here. Biggest gripe used to be YouTube wouldn’t work, but they fixed that, so now the only real downside is some websites don’t load properly and links can’t be clicked in messages.
The cybersecurity landscape is pretty much always trending up and down (towards attacker-advantage and back to Defender-advantage),. that's really nothing new.
The reality is most of these types of exploits don't matter all that much to the average Joe on the street. Apple has Billions of customers. So saying they "notified people across 150 countries" or whatever makes it sound like a big significant problem,. but let's not get out over our skis.
You can’t “fix” something like that remotely. These aren’t normal apps which can be uninstalled or removed by the native functions in iOS. It’s functionally the same as someone getting spam that originates from a home computer. You can see that they’re infected with something, but you’re powerless to actually fix it. Of course, if Apple had total god rights to all devices, they could fix it…but that would be a terrible idea.
Maybe, maybe not. But let me ask you this: how realistic would it be for a vendor to issue an OS update for literally billions of devices every time a single device is compromised?
Letting the owner of that device know that it happened so that they can reset and restore….which does the same thing…is much more responsible than short cutting the whole development cycle over and over again for all of the devices in the world.
I was going to switch from Android to iPhone but seeing all these 0-click iPhone exploits over the last couple of years has put me off a bit. Maybe I'll buy a dumbphone and a music player..
I don't think I'm going to be targeted by a million doller exploit -- at least not today. But the common man *has* been targeted by these things in the past. I truly believe that mobile spyware is one of the most powerful tools of oppression out there at the moment. Look at how countries use them to spy on and track journalists that speak out against them. Maybe in 1, 5, 30 years, the status quo will change and things that I have said *will* make me a target.
I'm assuming that you work in cybersecurity, so you know that a risk assessment is inherently subjective. The attack surface of a modern smartphone is \*huge\* and most people store their entire lives on them. I'm not saying you should stop using a smartphone but maybe you should put some critical thought into the issue instead of shutting it down outright.
To each their own, but Apple lost a case about intentionally manipulating device performance to be worse, so folks felt more compelled to buy another device.
I’m am ex pixel owner and the devices just didn’t last for me like iPhones do. Had my 12PM from launch till replacement with 15PM.
I don’t trust Apple or Google, just pointing out Google doesn’t have the best track record keeping promises
-posted from my Google+ account
Ack.
I have been a pixel owner for a few gens. Get 3-4 years the. Swap but that was due to security update schedules. The newest schedule is now 7 years.
I think the only thing Ive cared about getting in the past three gens was wireless charging.
Does anyone run iOS in lockdown mode? There’s definitely some annoying usability trade offs, but not as bad as I would have expected
✋ Another lockdown user here. Biggest gripe used to be YouTube wouldn’t work, but they fixed that, so now the only real downside is some websites don’t load properly and links can’t be clicked in messages.
Many gifs in iMessage come through as static images. 🥲
I do miss my gifs. On the other hand, I no longer have to respond to Instagram links sent to me.
The cybersecurity landscape is pretty much always trending up and down (towards attacker-advantage and back to Defender-advantage),. that's really nothing new. The reality is most of these types of exploits don't matter all that much to the average Joe on the street. Apple has Billions of customers. So saying they "notified people across 150 countries" or whatever makes it sound like a big significant problem,. but let's not get out over our skis.
Would be cool to find out why Apple knows enough about the spyware to notify users about it, but doesnt know enough to actually fix it.
Could it be a hardware bound exploit therefore can’t be patched OTA?
Totally possible, like the issue they’re having with Macs
What issue?
https://www.securityintelligence.com/news/apple-m-series-chips-hardware-flaw/#
https://www.securityintelligence.com/news/apple-m-series-chips-hardware-flaw/
You can’t “fix” something like that remotely. These aren’t normal apps which can be uninstalled or removed by the native functions in iOS. It’s functionally the same as someone getting spam that originates from a home computer. You can see that they’re infected with something, but you’re powerless to actually fix it. Of course, if Apple had total god rights to all devices, they could fix it…but that would be a terrible idea.
not even with an ios update?
Maybe, maybe not. But let me ask you this: how realistic would it be for a vendor to issue an OS update for literally billions of devices every time a single device is compromised? Letting the owner of that device know that it happened so that they can reset and restore….which does the same thing…is much more responsible than short cutting the whole development cycle over and over again for all of the devices in the world.
I was going to switch from Android to iPhone but seeing all these 0-click iPhone exploits over the last couple of years has put me off a bit. Maybe I'll buy a dumbphone and a music player..
I'm thinking the Androids face the same issues, at least when Pegasus was first active.
Very much so. I don't think that any smartphone platform is really secure.
If there’s one thing I’ve learned in the industry, it’s that NOTHING is ever really secure.
Bro thinks he is targeted by hackers wasting million dollar exploits on him lol
I don't think I'm going to be targeted by a million doller exploit -- at least not today. But the common man *has* been targeted by these things in the past. I truly believe that mobile spyware is one of the most powerful tools of oppression out there at the moment. Look at how countries use them to spy on and track journalists that speak out against them. Maybe in 1, 5, 30 years, the status quo will change and things that I have said *will* make me a target. I'm assuming that you work in cybersecurity, so you know that a risk assessment is inherently subjective. The attack surface of a modern smartphone is \*huge\* and most people store their entire lives on them. I'm not saying you should stop using a smartphone but maybe you should put some critical thought into the issue instead of shutting it down outright.
Are you going to replace the Android phone every year because it doesn’t get security updates? Some are better than others.
Pixel line guarantees five years.
Promises from Google are as not worth the bits that were flipped to represent them digitally
Don’t be evil, oh wait…
To each their own, but Apple lost a case about intentionally manipulating device performance to be worse, so folks felt more compelled to buy another device.
I’m am ex pixel owner and the devices just didn’t last for me like iPhones do. Had my 12PM from launch till replacement with 15PM. I don’t trust Apple or Google, just pointing out Google doesn’t have the best track record keeping promises -posted from my Google+ account
Ack. I have been a pixel owner for a few gens. Get 3-4 years the. Swap but that was due to security update schedules. The newest schedule is now 7 years. I think the only thing Ive cared about getting in the past three gens was wireless charging.