.png "back to home page")
Absolutely terrifying.
— Donie O'Sullivan (@donie) September 13, 2021
Complete access to your iPhone without even clicking anything. https://t.co/UqHF5nV4p2
New: Citizen Lab says NSO's "ForcedEntry" zero-day exploit, which skirts iOS 14's 'BlastDoor' protections, works on *all Apple devices*.
— Zack Whittaker (@zackwhittaker) September 13, 2021
Apple has updates out for iPhones, iPads, Macs, and Watches. Citizen Lab urges device owners to update immediately.https://t.co/Fi5IgUwLNO
Tweeting this while updating my phone. https://t.co/PdZBaw0js0
— Judd Legum (@JuddLegum) September 13, 2021
iOS 14.8 come with two inportant security fixes. “maliciously crafted PDF may lead to arbitrary code execution”, “maliciously crafted web content may lead to arbitrary code execution”. Bugs actively exploited, so: update. https://t.co/9ut8OM7RBE
— Lukasz Olejnik (@lukOlejnik) September 13, 2021
Massive news. Tim Cook must be absolutely relieved the iPhone 13 announcement on Tuesday has presumably already been prerecorded. https://t.co/aHLu5qqC4c
— James O'Malley (@Psythor) September 13, 2021
Big Apple 0-day in the wild. If you have an elevated threat model (activist, journalist, being harassed, in the public eye, etc) would recommend updating software on all Apple devices within the hour, if possible. All folks with all threat models, by EOD.https://t.co/HY9Uq91Twr
— Rachel Tobac (@RachelTobac) September 13, 2021
Apple could spend a rounding error of a rounding error of its cash and put the evil NSO out of business. But it just reacts. Meanwhile everyone remains at risk from these slimeballs. https://t.co/0bwx5mMGk6
— Dan Gillmor (@dangillmor) September 13, 2021
Researchers at Citizen Lab found that NSO Group, an Israeli spyware company, had infected Apple products without so much as a click.
— Wajahat Ali (@WajahatAli) September 13, 2021
Nice, nice. https://t.co/RZuQS51qan
It's absolutely medieval that Apple requires a ~300MiB download + a system reboot -- ~15 minutes end-to-end -- to apply a WebKit patch.https://t.co/e2UiCR89tG
— Alex Russell (@slightlylate) September 13, 2021
See also:https://t.co/PW0oimgBZE pic.twitter.com/G3j8X9P0Yx
BIG NEWS: Do you own an Apple product? UPDATE IT NOW. New zero-click NSO Group #Pegasus spyware has been infecting iPhones, Macs, Watches. This is the Holy Grail of surveillance capabilities and you are vulnerable until you update. https://t.co/GktK822Zo2
— Nicole Perlroth (@nicoleperlroth) September 13, 2021
?macOS Catalina folks: Apple dropped 11.6 that has a fixs for a _nasty_ *actively exploited* vulns in (CVE-2021-30860) PDF ops and (CVE-2021-30858) WebKit. You know the drill. https://t.co/EZmgawz3zx
— bòB Ruðís (@hrbrmstr) September 13, 2021
Tell me one more time how zero-days aren’t a big deal. https://t.co/zPTlMF3ize
— Nicole Perlroth (@nicoleperlroth) September 13, 2021
wow.
— D̒͂̕ᵈăᵃn̕ᶰ Ť̾̾̓͐͒͠ᵗe͗̑́̋̂́͡ᵉn̅ᶰtᵗl̀̓͘ᶫe̓̒̂̚ᵉrʳ (@Viss) September 13, 2021
they weaponized gifs. https://t.co/894Uh4LMlt pic.twitter.com/1x8cNGUt0w
? UPDATE YOUR APPLE DEVICES NOW?
— John Scott-Railton (@jsrailton) September 13, 2021
We caught a zero-click, zero day iMessage exploit used by NSO Group's #Pegasus spyware.
Target? Saudi activist.
We reported the #FORCEDENTRY exploit to @Apple, which just pushed an emergency update.
THREAD 1/https://t.co/dVuC1r1yUs pic.twitter.com/KHwtsWRcpA
Apple users: go update right now.
— Jesse "Update to iOS 14.8 right now" Damiani (@JesseDamiani) September 13, 2021
"Security researchers uncovered a flaw that allows highly invasive spyware from Israel’s NSO Group to infect anyone’s iPhone, Apple Watch or Mac computer without so much as a click."https://t.co/xcyl61PKKb
Apple patches two in-the-wild 0-days: 1 in CoreGraphics (CVE-2021-30860) for iOS and 1 in WebKit (CVE-2021-30858)https://t.co/SeuMyxsxCU
— Maddie Stone (@maddiestone) September 13, 2021
Citizen Lab's findings are out. If you own an Apple device, update today.
— Zack Whittaker (@zackwhittaker) September 13, 2021
"The exploit, which we call FORCEDENTRY, targets Apple’s image rendering library, and was effective against Apple iOS, MacOS and WatchOS devices."https://t.co/v5lm3zlr5a
Big Apple 0-day in the wild. If you have an elevated threat model (activist, journalist, being harassed, in the public eye, etc) would recommend updating software on all Apple devices within the hour, if possible. All folks with all threat models, by EOD.https://t.co/HY9Uq91Twr
— Rachel Tobac (@RachelTobac) September 13, 2021
PSA: Update your Apple deviceshttps://t.co/XHPkslWOzU
— Paul's Hardware (@paulhardware) September 13, 2021
PSA: Update your Apple devices...https://t.co/OuGnnZW3al
— sneaky (@whoasneaky) September 13, 2021
Do you own an iPhone? Go update it right now. I'll wait here. iOS 14.8 includes a fix for an NSO zero-click exploit found on a Saudi activist's phone. https://t.co/qbIJQLTwm2
— Eva (@evacide) September 13, 2021
SOURCE: https://t.co/7WpgZrSaYC
— Insider Paper (@TheInsiderPaper) September 13, 2021
?How LONG have I been WARNING Eveyone?
— David Benjamin (@DavidManOnFire) September 13, 2021
?Apple comes EMERGENCY Software Update to Patch iOS against NSO...
? cc: @clearing_fog @gregolear@ZevShalev @LincolnsBible @DemopJ @TeresaCCarter2@HunterJCullen @sandibachom @YDanasmithdutrahttps://t.co/wRNnvixRRz
アップル社の全ディバイスは重要セキュリティホールがあると判明された‼️
— Robert Geller (@rjgeller) September 13, 2021
某スパイウェア会社はこれを悪用した。やっとアップル社がバグを直した(遅すぎると言わざるを得ない)。
大至急: iPhone、Macなどのユーザーが速やかにOS更新すること‼️
https://t.co/X7ZHKGf1Jb
Update your iPhones. https://t.co/ud0XOQ8jGX
— Amee Vanderpool (@girlsreallyrule) September 13, 2021
URGENT!!! Update all Apple devices NOW https://t.co/i1aSOwlRxr https://t.co/MFhUv709Ub
— rolandsmartin (@rolandsmartin) September 13, 2021
If you own an iPhone, do not hesitate, update it immediately. https://t.co/NNQXtWngIC
— Doge (BAL 0-0) (@IntelDoge) September 13, 2021
URGENT!!! Update all Apple devices NOW https://t.co/i1aSOwDsW1 pic.twitter.com/1w09TZmBwk
— rolandsmartin (@rolandsmartin) September 13, 2021
Apple Issues Emergency Security Updates to Close a Spyware Flaw https://t.co/5uKmlQd8TT
— profdeibert (@RonDeibert) September 13, 2021
whoa, this is so bad. update your phones!! https://t.co/gdx4zJ293v
— Davey Alba (@daveyalba) September 13, 2021
iOS users - update your software https://t.co/trzO2lAgwn pic.twitter.com/7cuPBaNjAE
— Ren⁷⟭⟬⟬⟭ (@renkiger_) September 13, 2021
Apple issued emergency software updates after security researchers uncovered a flaw that allows highly invasive spyware from Israel’s NSO Group to infect anyone’s iPhone, iWatch or Mac computer without so much as a click. https://t.co/f9MrOV6XX3
— Shoaib Taimur (@shobz) September 13, 2021
The scale of corporate spying is absolutely terrifying, especially for journalists who are now routinely the target.https://t.co/0vApAoW2Gn
— Peter Geoghegan (@PeterKGeoghegan) September 13, 2021
referring to:https://t.co/b35ecYpTalhttps://t.co/3Mu3wN1x3T
— Chris Bing (@Bing_Chris) September 13, 2021
"All iPhones with iOS versions prior to 14.8, All Mac computers with operating system versions prior to OSX Big Sur 11.6, Security Update 2021-005 Catalina, and all Apple Watches prior to watchOS 7.6.2."
Stop and UPDATE your iPhones to iOS 14.8 NOW!!! We @citizenlab recovered NSO Group's FORCEDENTRY zero-click exploit (CVE-2021-30860) from the phone of a Saudi activist, and shared w/ Apple, who released iOS 14.8 today with a fix. https://t.co/fg2rihR6xp
— Bill Marczak (@billmarczak) September 13, 2021
In an additional report today, Citizen Lab said the same exploit was also used to hack the iPhone of a Saudi activist: https://t.co/IRgBwKAFm5 pic.twitter.com/NLId92lHhE
— Catalin Cimpanu (@campuscodi) September 13, 2021
FORCEDENTRY: #NSOGroup iMessage Zero-Click Exploit Captured in the Wild
— Manuel Atug (@HonkHase) September 13, 2021
By @citizenlab ?https://t.co/kRUye94xA7
Update your iPhone/iPad/Watch/Mac asap.https://t.co/YyhHfzsFjs
— Josh Taylor (@joshgnosis) September 13, 2021
So Apple just dropped a patch for the ForcedEntry 0day… Go grab that iOS 14.8 update! https://t.co/dIxj2RVF7L
— Karin Kosina (@kyrah) September 14, 2021
In a brief statement, Apple’s head of security engineering and architecture Ivan Krstić confirmed the fix in iOS 14.8. (Apple had no comment earlier). https://t.co/Y1dk12R9tj pic.twitter.com/Q6RbZWmb0e
— Zack Whittaker (@zackwhittaker) September 13, 2021
Please patch all your Apple devices ASAP especially if you’re working in a sensitive job (journalist, activist, government, public facing roles, etc.)!https://t.co/EwU8cJMA6v
— Sibin (@sibinmohan) September 13, 2021
애플, iOS 14.8 배포. 보안 업체 NSO 그룹의 '페가서스' 해킹툴이 이용하던 보안 헛점을 패치한 것으로 알려져. https://t.co/6rRCFE1iT4
— 나가토 유키 (@nagato708) September 13, 2021
Apple patches a #NSOGroup #0day flaw affecting all devices#PatchNowhttps://t.co/6aC0cJmrM5
— Manuel Atug (@HonkHase) September 13, 2021
애플, NSO 의 페가수스 스파이웨어 악용에 쓰인 제로데이 보안취약점 패치. iOS 14.8 업데이트
— lunamoth (@lunamoth) September 14, 2021
Apple patches an NSO zero-day flaw affecting all devices | TechCrunch https://t.co/M4IXPFdMuT
Apple issues emergency update to bypass Pegasus
— Mahua Moitra (@MahuaMoitra) September 14, 2021
While Solicitor General of India thinks up novel excuses to bypass accountabilityhttps://t.co/DKP0Ny87f8
“Using the zero-click infection method, Pegasus can turn on a user’s camera and microphone, record messages, texts, emails, calls — even those sent via encrypted messaging and phone apps like Signal — and send them back to NSO’s clients” https://t.co/tIb956yMOJ
— Jared Malsin (@jmalsin) September 13, 2021
Ron suggests followers might not want to update phones w/ a critical Apple iOS update that protects against clickless NSO spyware.
— Cullen (@CullenHoback) September 14, 2021
I’m suggesting Ron doesn’t want followers to update phones as it could remove malware he seemed to share back in August.https://t.co/k9RNxIo8tw pic.twitter.com/Yoe6kRwWao
So now they tell us! The Israeli co. #Pegasus has no-click spyware that can steal your data, turn on your camera, read encrypted messages, & make them available to countries that buy their services. It’s cyber rape & a crime. Congress must investigate. https://t.co/mUUMmaNOKe
— James J. Zogby (@jjz1600) September 13, 2021
Apple users: go update right now.
— Jesse "Update to iOS 14.8 right now" Damiani (@JesseDamiani) September 13, 2021
"Security researchers uncovered a flaw that allows highly invasive spyware from Israel’s NSO Group to infect anyone’s iPhone, Apple Watch or Mac computer without so much as a click."https://t.co/xcyl61PKKb
More here:https://t.co/wlerWD38i0
— BleepingComputer (@BleepinComputer) September 13, 2021
Today is definitely the day to do that IOS/MacOS software update you've been putting off ? #infoSec https://t.co/D6iKwiS1WI
— Kevin Mar-Molinero (@Kevmarmol_CT) September 14, 2021
One of the nastiest, and it's 'zero click'. Apple released a patch. Update ASAP now if you own Apple things.
— Julian Oliver (@julian0liver) September 14, 2021
"The exploit, which we call FORCEDENTRY, targets Apple’s image rendering library, and was effective against Apple iOS, MacOS and WatchOS devices"https://t.co/uwzDa2PLZ2
?Update your Apple devices now?
— Sarah A | ساره #SaveSheikhJarrah (@sa0un) September 13, 2021
Researchers at @citizenlab caught a zero-click, zero day iMessage exploit used by NSO Group's #Pegasus spyware, and Apple just released an emergency patch for it.
Time for a security update. https://t.co/IjUBw8g3SQ
JUST IN - Apple releases an emergency update to stop NSO Group’s reckless mercenary spyware, an exploit allowing the click-less infection of anyone’s iPhone, Apple Watch, or Mac computer by the "clients" of the Israeli company.https://t.co/I83291V4Yr
— Disclose.tv (@disclosetv) September 13, 2021
NSO Group iMessage Zero-Click Exploit Captured in the Wild. Analysis by @citizenlab https://t.co/uD0Do40R33
— Joxean Koret (@matalaz) September 14, 2021
気になる海外のITニュース?
— よしなしごと|Yoshinashigoto (@yoshinashigoto_) September 14, 2021
Apple fixes security vulnerabilities in new versions of iOS, macOS, and watchOS - Ars Technica#ブログ#ITエンジニア#ブログ書け#駆け出しエンジニアと繋がりたいhttps://t.co/b1TuPZxWwV