Very interesting link, though I'm very disappointing it doesn't include speculation on when/where/how the bug was introduced to the phone. Also, I'm pretty surprised I hadn't come across the info that Wikileaks was bugged. Thanks for sharing.

Mad respect for whoever designed that, for a tailor made small series design that is an incredible piece of work. The component density alone is probably some kind of record. Note the Spartan 6.

That literally seems like it taps the microphone wire to record raw audio signals.

Brilliant, but not a software or hardware issue. (Although actually having the device brick itself if it is opened up would have prevented the bug from being inserted).

Likewise secure PIN pads are easily "defeated" by a camera.

Plenty of TPM devices are encased in epoxy and designed to self destruct if tampered with. And lots of modern day devices (iPhones, game consoles) have stood up to years of attempts to exfiltrate their secrets.

Work arounds are possible, but the industry has, for better or for worse, figured out how to make secure secret stores.

> And lots of modern day devices (iPhones,

NSO ? I mean, am I the only paranoic that thinks that Apple fixes its holes only _after_ other people make them public ?

There are a lot of companies that are paid big bucks by nation states to find vulnerabilities and not make them public. NSO for example. So yes Apple only fixes the bugs people or companies find that make them public. But not for the reason you are implying.