In case you're in a position that you might get targeted with such exploits (you generally likely know if that is the case), consider enabling Apple Lockdown mode: https://support.apple.com/en-us/105120
In general, vulnerabilities that have been only used in "sophisticated attacks against specific targeted individuals" will become commonly exploited ones fairly quickly after the fix has been released. Once the fix is out, you can compare the old and new binaries and reverse engineer the vulnerability details from the changes. This information can then be used to re-engineer the exploit.
This is why you should always install the security updates as fast as possible.
Harry Sintonen /
npub1q2…7d56p
2025-04-18 10:33:27
in reply to nevent1q…6j8k
Author Public Key
npub1q2dlxhrrazeq2ezqps9txhlr799ud3j07m3m58q32fcm6pfm06xqf7d56pPublished at
2025-04-18 10:33:27Event JSON
{
"id": "b90f68569fefb730ee36ab509b844b2f36ff508aa2b01569b2811e0cb871248f",
"pubkey": "029bf35c63e8b20564400c0ab35fe3f14bc6c64ff6e3ba1c115271bd053b7e8c",
"created_at": 1744972407,
"kind": 1,
"tags": [
[
"e",
"b73477d8f68b8ddd8a5aa7a6c1d4a823433fed8d994b174e946eaf206fa3c77e",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://infosec.exchange/users/harrysintonen/statuses/114358511667371173",
"activitypub"
],
[
"client",
"Mostr",
"31990:6be38f8c63df7dbf84db7ec4a6e6fbbd8d19dca3b980efad18585c46f04b26f9:mostr",
"wss://relay.mostr.pub"
]
],
"content": "In case you're in a position that you might get targeted with such exploits (you generally likely know if that is the case), consider enabling Apple Lockdown mode: https://support.apple.com/en-us/105120\n\nIn general, vulnerabilities that have been only used in \"sophisticated attacks against specific targeted individuals\" will become commonly exploited ones fairly quickly after the fix has been released. Once the fix is out, you can compare the old and new binaries and reverse engineer the vulnerability details from the changes. This information can then be used to re-engineer the exploit.\n\nThis is why you should always install the security updates as fast as possible.",
"sig": "ebd056308665da16693d46e6f91cb0a8dfb1c062c1cdf2b42012eb1ba15c79cbf9a490d2e751f33bb6e85dcf12911636e320c9964b28834a589e15c7d1e9e17a"
}