애플이 iOS 15에 여전히 존재하는 3가지 제로데이 보안 취약점을 무시했다고 연구원이 말했습니다.| 연구진은 iOS15에서 여전히 이용할 수 있는 iOS 제로데이 3종을 공개하며 애플이 이를 무시했다고 비판했습니다.

newsroom 9/25 '21 posted 뉴스 IT

년, 애플은 중요한 iOS, iPadOS, macOS, tvOS 또는 시계를 공유하는 연구원들에게 최대 100만 달러를 지급하는 보안 바운티 프로그램을 대중에게 공개했습니다.Apple의 OS 보안 취약점, 이를 악용하는 데 사용되는 기술.

• 올해 3월 10일부터 5월 4일 사이에 4개의 0일 취약점을 보고했는데, 그 중 3개는 최신 iOS 버전(15.0)에 여전히 있고 1개는 14.7에 수정되어 있습니다. 그러나 애플은 이를 은폐하고 보안 콘텐츠 페이지에 나열하지 않기로 결정했습니다.

• 제가 그들과 대면했을 때, 그들은 사과했고, 처리 문제로 인해 그런 일이 발생했다고 장담했으며, 다음 업데이트의 보안 콘텐츠 페이지에 그것을 나열하겠다고 약속했습니다.

• 그 이후로 세 번의 출시가 있었고 매번 약속을 어겼습니다.

• 이 연구원은 블로그 게시물에서 4월 29일 애플 시큐리티 바운티 프로그램에 4가지 취약점에 대한 보고서를 처음 보냈다고 밝혔습니다. 애플은 지난 6월 iOS 14.7의 취약점 중 하나를 해결했지만 업데이트에 대한 보안 노트에는 언급하지 않았습니다.

Researcher Says Apple Ignored Three Zero-Day Security Vulnerabilities Still Present in iOS 15 [www.macrumors.com]

Security researcher accuses Apple of ignoring multiple iOS 15 zero-day vulnerabilities [9to5mac.com]

Researcher drops three iOS zero-days that Apple refused to fix [www.bleepingcomputer.com]

Researcher discloses three iOS zero-days, still exploitable in iOS 15, and criticizes Apple for ignoring them [www.techspot.com]

Researcher warns of three zero-day iPhone hacks still not fixed [www.imore.com]

newest replies popular replies

Open Wiki - Feel free to edit it. -

9/25 '21 answered

Why is Apple not working with security researchers who are finding highly critical bugs like these?

They should put someone competent in charge to run a proper security bounty program.

It is just so bizarre that this is completely mismanaged. https://t.co/0kwChrEDam
— Stefan Arentz ? ? ?? (@satefan) September 24, 2021

https://t.co/g65r2XrPrB 3 iOS 0days dropped. Also, what the fuck is Apple doing with this info!? Why do they need to log your menstrual cycles? pic.twitter.com/bLvHzK8zOc
— Rena and -3 others (@RenaKunisaki) September 24, 2021

Apple will never change their ways until they're publicly shamed. Sad to see it has come to this.
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

Click through to see the Game Center exploit in particular. It’s rough.

Things like this should almost never slip through the cracks with a functioning security program.

Instead, with Apple, it’s commonplace.

That’s so deeply broken, yet nothing changes.

What will it take?
— Marco Arment (@marcoarment) September 24, 2021

Security relations are developer relations.

What will it take for Apple to change their entire CULTURE of how they treat outside developers? https://t.co/BQdN1tRiyF
— Marco Arment (@marcoarment) September 24, 2021

The report shows any app could access contact details without requesting permission. That's what Apple just decided to sweep under the rug. https://t.co/3XGu3FCAxU via https://t.co/UqGFu4u0dU
— 10 GOTO 10 (@mahemoff) September 24, 2021

"I've reported four 0-day vulnerabilities this year between March 10 and May 4, as of now three of them are still present in the latest iOS version (15.0) and one was fixed in 14.7, but Apple decided to cover it up and not list it on the security content page" ?
— 10 GOTO 10 (@mahemoff) September 24, 2021

not fun to watch iOS start to feel more like Windows XP before SP1 https://t.co/wppmJpK0MB
— alex (@alex) September 24, 2021

Rumors are saying that Apple can’t afford to pay the maximum payouts on bug bounties and that’s why they never did. I’m starting a fund raising to help Apple, reach out if you want to donate and assist Apple through that difficult period.
— Matt “Swish” Suiche (@msuiche) September 24, 2021

It appears to be able to pull my entire contact list and lots of details about my conversations, with no user prompt of any kind. I see a ton of my own private data in each of these 3 sections: pic.twitter.com/WIzo8lpQT1
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

NEW: A researcher has published the source code for exploits that take advantage of three unpatched iPhone bugs.

Another researcher said he was able to reproduce exploits in 30 mins. But bugs are not *that* dangerous for users. https://t.co/exxHhzWufa
— Lorenzo Franceschi-Bicchierai (@lorenzofb) September 24, 2021

?Apple ignored this person. Now they’re publishing multiple proofs-of-concepts:

“I've reported four 0-day vulnerabilities this year [...], three of them are still present in [iOS 15.0] and one was fixed in 14.7, but Apple decided to cover it up”?https://t.co/eKzq6BEupG
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

When Apple doesn’t bother to fix serious issues long after they’ve been *reported* to them, how can we trust them to be the good stewards of an ecosystem used by a billion people?

Rampant scams on the App Store are another example of Apple’s failings: https://t.co/TIkmJzEVD7
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

?“Any app installed from the App Store may access the following data without any prompt from the user:” pic.twitter.com/hXpfqlgnDa
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

I presume fixing these exploits will make it harder for Apple to spy on its employees...
cc @ashleygjovik https://t.co/nhr0PMw6AY
— Alan Langford ☮️❤️?? 2x? (@alanlangford_ca) September 24, 2021

It looks like Apple has a bug bounty problem. This researcher claims they've reported 4 zero days, 3 of which are still exploitable in iOS 15. This after a Spanish researcher dumped a lockscreen bypass because he says Apple ignored him. https://t.co/6cRn2IUQ1z https://t.co/Pgqr85GCwV
— Nicole Perlroth (@nicoleperlroth) September 24, 2021

?Can confirm the exploit also works on iOS 15.0 - it's able to silently pull a *trove* of personal information without _any_ kind of user prompt.
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

We just updated the story with comments from the researcher who found the bugs.https://t.co/TxYgincF33 pic.twitter.com/O9cUkhK5XU
— Lorenzo Franceschi-Bicchierai (@lorenzofb) September 24, 2021

Every OS has security issues. What's important to understand here is how the approaches differ.

Other OSes let you move your computing to a safer layer (the web) and deliver choice + competition about those protections. Only iOS keeps mobile down in the (security) dirt. https://t.co/mLcuKmGlAc
— Alex Russell (@slightlylate) September 24, 2021

The website at the top of the thread seems to be having some intermittent issues. Link to archived page: https://t.co/IqKuHO97DD
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

Another researcher annoyed with how Apple handled his report, from just a few days ago: https://t.co/tgh2iVoC03
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

But seriously how Apple doesn't just pay 100k for every bug is the dumbest penny pinching when you've got a trillion fucking dollars pic.twitter.com/txEVpoTDzm
— SoS (@SwiftOnSecurity) September 24, 2021

Can confirm the exploit runs successfully on iOS 14.8: pic.twitter.com/6k3RCumwys
— Kosta Eleftheriou (@keleftheriou) September 24, 2021

Researcher drops three iOS zero-days that Apple refused to fix https://t.co/EyotJ1zpat
— Zuk (@ihackbanme) September 24, 2021

There are few expressions of dismay with a bug bounty program, in this case Apple's, that are quite as clear as dumping proof-of-concept code for unpatched holes. https://t.co/4tBBc4TVVx
— Joseph Menn (@josephmenn) September 24, 2021

Researcher drops three iOS zero-days that Apple refused to fix https://t.co/Sc4Iid252c
— Jim Nitterauer (@JNitterauer) September 24, 2021

Researcher drops three iOS zero-days that Apple refused to fixhttps://t.co/Okc1r566GM
archive: https://t.co/WfuLsUlWjt https://t.co/uelA36aab2
— no bullshit bitcoin (@nobsbitcoin) September 24, 2021

Researcher warns of three zero-day iPhone hacks still not fixed https://t.co/mcXU9Ooulo
— iMore (@iMore) September 24, 2021

permanent link

Featured

Important Notice: Discontinuation of Our Wiki Service

Dear Valued Users,

We hope this message finds you well. We are writing to inform you of an important upcoming change to our services. After careful consideration and analysis, we have made the difficult decision to discontinue our wiki site, effective one month from 2024/04/30.

This was not an easy decision to make, as we understand the importance of the resources and community that have been built around our wiki. However, due to evolving market conditions and strategic realignments, we must redirect our resources and efforts towards other ventures that will allow us to serve you better in the future.

What This Means for You:

Access to Content: You will continue to have full access to all content on the wiki until the discontinuation date. We encourage you to save or migrate any content you wish to retain.
Final Date of Service: The wiki will become inaccessible starting 1st June 2024, after which all content will be permanently removed.

We are immensely grateful for the support and contributions of our user community throughout the years. The wiki is being retired, but our team will be back soon with new services and apps.

Thank you for being a part of our journey.

Warm regards,

editoy Inc.

Related

Featured