The Apple Support Community Forum will likely give you a wider representation of users. If the only reason you came here was to verify behavior, I doubt you will get much more feedback here, especially on the weekend. Of the rest, almost all come from state sponsored hacks targeted against small groups and industry.īut I digress.
You haven't indicated what the vector being used for this supposed exploit, but most all have come from an App Store app, at least on a non-jailbroken iDevice. I will say that the App Store reviewers have not been perfect in their ability to spot security issues with apps before approval, but they are doing somewhat better recently at preventing apps from obtaining information they cannot justify a need for and preventing such information from leaving the device. Having not needed to troubleshoot my iPhone with an Apple Specialist, either remotely or at a Genius Bar, I can't say whether they have a means of extracting the file remotely or not.
But there is no way for me to exfiltrate this file without my attaching the iPhone to my Mac. I've done it myself when troubleshooting a software issue. I can't say your analyst is wrong about this, but there are explanations other than working with an Apple Specialist for a sysdiagnosis file to be produced on an iPhone. Now, if your device(s) were doing this, and not everyone else's, would that not draw a red flag that something is not right? He's identified it as spyware, and is currently working up technical details and the logs for Apple, although he's sure that they are already aware of it and have chosen not to patch the exploit, as he's seen this before. Location data, screen sharing, etc. This "Start Diagnostics With Apple Support" occurs on ALL of my devices, as well as some family members' devices. I'm sure you can imagine the security implications considering the admin privileges that this provides, it's a security issue, as the device is recognizing that Apple is trying to connect with it, but they are not. That should only pop up if and when you are working with a Apple Specialist, DIRECTLY, to allow extra permissions on the device for them to connect and diagnose any problems. Because I've hired a security analyst and he has determined that this is a EXPLOIT, and is not normal iPhone behavior.
0 kommentar(er)
