I do computers @ https://t.co/DKXRMmnzya . Previously Immunity Inc & Trail of Bits. Hobbyist photographer @hamid@infosec.exchange
Apr 2 • 7 tweets • 2 min read
A while back and following Apple’s notification about mercenary actors (Parsgon) targeting iOS, I got a hunch. After just two rounds of multicast to Farsi speaking folks, turns out there has been over a dozen cases (that reached back) who’ve received Apple or WhatsApp warnings!🧵
This is probably the first time that I’m aware of, we’ve such cases in Iran. Contrary to typical cases often reported, targets do not fit the typical political/journalism profiles. Mostly IT/Tech staff. My guess is more of targeted prepositioning ops and less espionage. Sadly—
Mar 6 • 7 tweets • 3 min read
If you end up in a situation you suspect your iPhone might be compromised, here are a few initial steps you can take to collect data/logs and do a preliminary and basic review: 🧵
⚠️DO NOT REBOOT/SHUTDOWN!⚠️
If you can't afford waiting, remove the SIM & disable WiFi
Then... 🧵
1. Take a Sysdianose snapshot and download generated log files from the device:
#فارز هم از راه رسید! مبارکه!
قبل از اینکه دسترسی بهش فراهم بشه برای ارزیابی فنی زیاد گداخته اش نمیکنم، چون تکلیف این سناریوهای بومی و کیفیت خروجی اونها قابل پیشبینی هست کاملا.
اما به همین یه اسلاید رجوع کنیم. ادعا کردن روی کافه بازار عملیاتی شده؟خیلی هم عالی. ولی --
فرض که ادعای تشخیص ۶۰٪ ای بدافزارهای موبایل هم نزدیک به واقعیت باشه، امیدوارم خود کافه یا پلیس برای خنده هم که شده نتیجه بررسی کل محتوای کافه بازار رو منتشر کنن :)
سوال دیگه اینکه اگر فارز اخیرا فعال بوده روی این همه پلتفورم و کار میکنه، پس اینا گیلاسه؟
Someone, somewhere in Russia has discovered a hardware implant in their iPhone (11?). It's pretty simple yet interesting. Dedicated SIM+MIC+GPS. Replaced stock battery with a smaller one to free up space for the implant.
IT EVEN BLINKS IN RED!!!
If you're not familiar with those little bugs, they're not new nor unusual. You can find them dirst cheap on Ebay or Alibaba, for as cheap as $15 and small enough to fit in a USB plug! But I can't recall any public case where one has been squeezed into an iPhone.