|
|
|
|
|
|
by gerdesj
1784 days ago
|
|
|
A bright lad with a few years experience finds a way around the mitigations for a flaw found in the previous version. Bear in mind Apple is a $T1 organisation and he ... isn't. Not only does he perform a rather well polished dance but he writes it up in an entertaining and well presented way. I suspect english is a second language too which makes the whole thing even more impressive. Just to reiterate: he waltzes around a key aspect of the security in iOS 14 - that is disturbing to me. If he can do that, what do you think a well funded nation state bunch of noddies gets up to? |
|
|
A few years experience specifically working with iOS. That doesn't say anything about how much existing experience he has in the security space.
Here's a Java critical patch update from 2017 that references someone of the same name (probably him):
https://www.oracle.com/security-alerts/cpujul2017.html