Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Is there a reason why quarantining image attachments from unknown senders hasn’t been standard industry practice ever since Stagefright?


Apple specifically introduced BlastDoor framework to combat this, so NSO shifted their attacks around decoding, avoiding BlastDoor.


Android 10 also introduced similar mitigations: https://android-developers.googleblog.com/2019/05/queue-hard...

Though it's worth noting that the cost of Stagefright was surprisingly low - it took a long time for a good ASLR bypass to come out for it and by that time most devices were updated or replaced. Additionally, the sheer variance between Android devices means developing worm-level exploits becomes extremely difficult compared to something where everyone's running the exact same binary like Windows, so it likely only saw targeted use.


Project managers like the pretty inline previews! Security? Pssh that's just for nerds.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: