Zerodium, a company that pays up to $2 million for exploits on functional system Apple's iOS, reports that it is reducing its prices because the number of exploits targeting this platform has increased significantly recently.
In other words, the company is no longer willing to spend as much money for iOS hacks because the system is not what it used to be and there are many security holes.
“iOS security is fucked”, said ο Chaouki Bekrar, Διευθύνων Σύμβουλος και founder της Zerodium.
Zerodium reports that one possible reason for the increase in the number of exploits targeting iOS could be the greater number of researchers looking for errors ασφαλείας στο λειτουργικό σύστημα της Apple, καθώς και τα jailbreaks make it possible to carefully inspect the code with reverse engineering.
As a result, the company states that it is no longer interested in specific types of iOS exploit.
"We do NOT want new Apple iOS LPE, Safari RCE, or sandbox escapes for the next 2 to 3 months due to the large number of submissions associated with these security vulnerabilities. "Prices for iOS one-click chains (eg via Safari) are likely to fall in the near future," Zerodium announced on Twitter.
"Only PAC and non-persistence still hold… but we see a lot of exploits bypassing the PAC and there are some persistence exploits (0days) that work with all iPhone / iPad. "Let's hope iOS 14 gets better."
Apple is expected to introduce the new iOS 14 in the fall, probably along with the news models of the iPhone. However, a preview of this OS update is expected to be announced and released at the WWDC conference, with an early beta version.
