Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Hamid Kashfi Profile picture
Hamid Kashfi
@hkashfi
I do computers @ https://t.co/DKXRMmnzya . Previously Immunity Inc & Trail of Bits. Hobbyist photographer @hamid@infosec.exchange
Apr 2 7 tweets 2 min read
A while back and following Apple’s notification about mercenary actors (Parsgon) targeting iOS, I got a hunch. After just two rounds of multicast to Farsi speaking folks, turns out there has been over a dozen cases (that reached back) who’ve received Apple or WhatsApp warnings!🧵 This is probably the first time that I’m aware of, we’ve such cases in Iran. Contrary to typical cases often reported, targets do not fit the typical political/journalism profiles. Mostly IT/Tech staff. My guess is more of targeted prepositioning ops and less espionage. Sadly—
Mar 6 7 tweets 3 min read
If you end up in a situation you suspect your iPhone might be compromised, here are a few initial steps you can take to collect data/logs and do a preliminary and basic review: 🧵

⚠️DO NOT REBOOT/SHUTDOWN!⚠️

If you can't afford waiting, remove the SIM & disable WiFi

Then... 🧵 1. Take a Sysdianose snapshot and download generated log files from the device:

it-training.apple.com/tutorials/supp…

You can later analyze it using Sysgiagnose Analysis Framework:
github.com/EC-DIGIT-CSIRC…
Dec 12, 2023 16 tweets 4 min read
#فارز هم از راه رسید! مبارکه!
قبل از اینکه دسترسی بهش فراهم بشه برای ارزیابی فنی زیاد گداخته اش نمیکنم، چون تکلیف این سناریوهای بومی و کیفیت خروجی اونها قابل پیشبینی هست کاملا.

اما به همین یه اسلاید رجوع کنیم. ادعا کردن روی کافه بازار عملیاتی شده؟‌خیلی هم عالی. ولی -- Image فرض که ادعای تشخیص ۶۰٪ ای بدافزارهای موبایل هم نزدیک به واقعیت باشه، امیدوارم خود کافه یا پلیس برای خنده هم که شده نتیجه بررسی کل محتوای کافه بازار رو منتشر کنن :)

سوال دیگه اینکه اگر فارز اخیرا فعال بوده روی این همه پلتفورم و کار میکنه، پس اینا گیلاسه؟
Jan 14, 2021 6 tweets 2 min read
Someone, somewhere in Russia has discovered a hardware implant in their iPhone (11?). It's pretty simple yet interesting. Dedicated SIM+MIC+GPS. Replaced stock battery with a smaller one to free up space for the implant.

IT EVEN BLINKS IN RED!!!

If you're not familiar with those little bugs, they're not new nor unusual. You can find them dirst cheap on Ebay or Alibaba, for as cheap as $15 and small enough to fit in a USB plug! But I can't recall any public case where one has been squeezed into an iPhone.