A response to AT&T’s letter — We have an iPad exploit and all iPads are vulnerable.

So, AT&T calls us malicious in their letter to their customers. I think this calls for a statement to clear the air.
AT&T had plenty of time to inform the public before our disclosure. It was not done. Post-patch, disclosure should be immediate– within the hour. Days afterward is not acceptable. It is theoretically possible that in the span of a day (particularly after a hole was closed) that a criminal organization might decide to use an old dataset to exploit users before the users could be enlightened about the vulnerability.
Even in this disclosure, which I feel they would not have made if we hadn’t publicized this vulnerability, AT&T is being dishonest about the potential for harm.
I had previously thought that only an attacker who could crack the secret Ki key (I believe but am not certain that David Hulton and Skyper could based on information I have received about their presentation in Dubai, and if they have figured it out who knows who else has) could use the ICCIDs in this breach. 

Later, two security researchers from iSec Partners revealed that an attacker of much lower sophistication could use the ICC-IDs to determine iPad owner location.
iSec is a well-established name in the security industry and is known for its absolute integrity. I had the good fortune of meeting iSec hacker Josha Bronson at a convention. His abilities were second to none. I have no reason to doubt iSec’s claims.

Beyond that, AT&T is not highlighting the potential for a skilled attacker to use a Safari exploit, or other iPad application exploit based on this dataset to takeover the iPad. A complete list of iPad 3G customers (which could have been generated from this vulnerability) would have the ideal bit of data for those in the RBN with zero-day Safari exploits to acquire.

I released a semantic integer overflow exploit for Safari through Goatse Security in March– it was patched on Apple’s desktop Safari but has yet to be patched on the iPad. This bug we crafted allows the viewer of a webpage to become a proxy (behind corporate and government firewalls!) for spamming, exploit payloads, password bruteforce attacks and other undesirables. The kicker is that this attack cannot be detected by any current IDS/IPS system. We released this in March, mind you, and Apple still hasn’t got around to patching this on the iPad! I know through personal experience that the patch time for an iPad vulnerability is over two months and counting. Given that, the number of parties which probably have active iPad exploits likely numbers in the hundreds, if not the thousands. The iPad simply is not a safe platform for those that require a secure environment.
Robert “RSnake” Hansen, one of the world’s foremost web application security researchers and the author of “Detecting Malice”, talked a little about our March release on his blog.

The potential for this sort of attack and the number of iPad users on the list we saw who were stewards of major public and commercial infrastructure necessitated our public disclosure. People in critical positions have a right to completely understand the scope of vulnerability immediately. Not days or weeks or months after potential intrusion.

In addition AT&T says the person responsible for this went “to great efforts”. I’ll tell you this, the finder of the AT&T email leak spent just over a single hour of labor total (not counting the time the script ran with no human intervention) to scrape the 114,000 emails. If you see this as “great efforts”, so be it. I know that the RBN has literally thousands of people working full-time to exploit software vulnerabilities. At any given moment, whatever efforts us researchers are making are dwarfed by those in the thrall of evil. So get real. You fucked up, we helped you figure that out and informed the public. You should thank us, but you can keep on shit-talking if you want. We know what we did was right.
When we disclosed this, we did it as a service to our nation. We love America and the idea of the Russians or Chinese being able to subvert American infrastructure is a nightmare. We understand that good deeds many times go punished, and AT&T is trying to crucify us over this. The fact remains that there was not a hint of maliciousness in our disclosure. We disclosed only to a single journalist and destroyed the data afterward. We did the right thing, and I will stand by the actions of my team and protect the finder of this bug no matter what the cost
Email: goatsesecure@gmail.com

Text/Whatsapp: +1 646-389-4585

Comments

  1. felisha greenNovember 15, 2020 at 11:06 PM

    Do you need to increase your credit score?
    Do you intend to upgrade your school grade?
    Do you want to hack your cheating spouse Email, whatsapp, Facebook, instagram or any social network?
    Do you need any information concerning any database.
    Do you need to retrieve deleted files?
    Do you need to clear your criminal records or DMV?
    Do you want to remove any site or link from any blog?
    you should contact this hacker, he is reliable and good at the hack jobs..
    contact : cybergoldenhacker at gmail dot com

    ReplyDelete

Post a Comment

Popular posts from this blog

HACKING WHATSAPP

Image
PHONE TRACKERS     SAM HOCEVAR How to Hack WhatsApp Account without Touching Someone’s Phone Are you thinking about hacking someone’s WhatsApp account? WhatsApp is a popular free platform used by billions of internet users. They install it to take advantages of a large number of its simple, useful features and exchange text messages with attached videos and audio files, using Android or iOS phone, PC or Mac computer or another smart mobile device. They can easily share a lot of information. It’s no wonder that a lot of people may start thinking about how to hack WhatsApp and get access to a person’s essential data and monitor their activity. Why do YOU need to hack someone’s WhatsApp messages? You want to protect your kids from  cyberbullying  and prevent them from risky behavior. Or you need to  catch a cheater  and of course to track signs of the employee’s inappropriate conduct to  prevent data leaks . If you are looking for a secure method to hac
Read more

How Criminal Hackers Make Money from Your Data

Image
How Criminal Hackers Make Money from Your Data September 13, 2019 by Sam Hocevar Every day, businesses handle massive amounts of customer data—so huge that it makes  disaster recovery quite challenging for many companies. On the other hand, cyber hackers capitalize on such data to conduct illegal activities. Surely, data is a very powerful instigator of fraud. Data breaches are commonly perpetrated by criminal groups to make financial gains. To avoid making direct online, illegal transactions involving actual currencies, criminals use these ways to turn stolen data into real money. 1. Ransomware Commonly distributed through spam emails, malicious advertisements, and black hat SEO sites, a ransomware malware encrypts computer files and locks its user out of the system until the victim agrees to pay a ransom to the hacker. In 2015, the Hollywood Presbyterian Medical Center paid its attackers $17,000 worth of Bitcoin to retrieve sensitive medical records. And early this ye
Read more