IPhone zero-click Wi-Fi exploit: One of the most breathtaking hacks!

  • Thread starter jedishrfu
  • Start date
  • #1
12,366
6,112

Summary:

Before Apple patch, Wi-Fi packets could steal photos. No interaction needed. Over the air.
https://arstechnica.com/gadgets/202...t-is-one-of-the-most-breathtaking-hacks-ever/

Earlier this year, Apple patched one of the most breathtaking iPhone vulnerabilities ever: a memory corruption bug in the iOS kernel that gave attackers remote access to the entire device—over Wi-Fi, with no user interaction required at all. Oh, and exploits were wormable—meaning radio-proximity exploits could spread from one nearby device to another, once again, with no user interaction needed.

This Wi-Fi packet of death exploit was devised by Ian Beer, a researcher at Project Zero, Google’s vulnerability research arm. In a 30,000-word post published on Tuesday afternoon, Beer described the vulnerability and the proof-of-concept exploit he spent six months developing single-handedly. Almost immediately, fellow security researchers took notice.
 
  • Wow
  • Sad
  • Like
Likes anorlunda, pbuk, sysprog and 2 others

Answers and Replies

  • #2
pbuk
Science Advisor
Gold Member
1,874
721
Why repeat the sensationalist headline?
 
  • #4
1,875
1,130
Why repeat the sensationalist headline?
As @jedishrfu said, "ask . . . why not" ##-## it seems sensational enough ##-## from the cited 30,000-word post:
Ian Beer said:
This demo shows the attacker successfully exploiting a victim iPhone 11 Pro device located in a different room through a closed door. The victim is using the Youtube app. The attacker forces the AWDL interface to activate then successfully exploits the AWDL buffer overflow to gain access to the device and run an implant as root. The implant has full access to the user's personal data, including emails, photos, messages, keychain and so on. The attacker demonstrates this by stealing the most recently taken photo. Delivery of the implant takes around two minutes, but with more engineering investment there's no reason this prototype couldn't be optimized to deliver the implant in a handful of seconds.
 
  • Like
Likes nsaspook

Related Threads on IPhone zero-click Wi-Fi exploit: One of the most breathtaking hacks!

  • Last Post
Replies
10
Views
1K
  • Last Post
Replies
3
Views
3K
  • Last Post
Replies
6
Views
31K
  • Last Post
Replies
15
Views
3K
  • Last Post
Replies
4
Views
2K
  • Poll
  • Last Post
Replies
12
Views
10K
Replies
5
Views
2K
  • Last Post
7
Replies
151
Views
9K
  • Last Post
Replies
5
Views
9K
  • Last Post
Replies
17
Views
4K
Top