Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

The article quotes the part of the Signal blog that said “a real exploit payload would likely seek to undetectably alter previous reports, compromise the integrity of future reports (perhaps at random!), or exfiltrate data from the Cellebrite machine.” A complex exploit like that would say much more about the author’s intent than a driver that shuts down the computer when a “wiggler” is detected.


But what if Signal's (or anyone else's) exploitation simply locked the device when the file was read, preventing further data extraction?




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: