In contrast to the trivially-exploitable Log4j2 exploit, here's a zero-click exploit from NSO group. Here's an article describing it in understandable terms first:
https://www.engadget.com/google-researchers-nso-zero-click-iphone-imessage-exploit-143213776.html
And here are the technical details:
https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.html
No comments:
Post a Comment