Israeli company Cellebrite sells a device to extract data from locked phones, both Android and iPhones afaik. So indeed I’m guessing their government knows some stuff about the security of both platforms.
Fun fact: comments mentioning Cellebrite get immediately shadow-hidden on Reddit, or at least in some of the main subs.
In 2021, Moxie Marlinspike, creator of the encrypted messaging app Signal, pointed to several vulnerabilities in Cellebrite’s UFED and Physical Analyzer software that allowed for arbitrary code execution on Windows computers running the software. One exploit he detailed involved the UFED scanning a specially formatted file, which could then be used to execute arbitrary code on the computer running the UFED. Marlinspike wrote that the code could then “[modify] not just the Cellebrite report being created in that scan, but also “all previous and future generated Cellebrite reports” from all previously scanned devices and all future scanned devices in any arbitrary way.”[27] Marlinspike also found that Cellebrite software was bundled with out-of-date FFmpeg DLL files from 2012, which lacked over 100 subsequent security updates. Windows Installer packages, extracted from the Windows installer for iTunes and signed by Apple, were also found, which he said raised legal concerns.[28] Cellebrite responded that the company “is committed to protecting the integrity of our customers’ data, and we continually audit and update our software in order to equip our customers with the best digital intelligence solutions available.”[29] The report by Signal followed an announcement by Cellebrite in 2020 that it had developed technology to crack encrypted messages in the Signal app, a claim the company later retracted and downplayed.[30][31] The announcement by Marlinspike raised questions about the integrity of data extracted by the software,[32][33] and prompted Cellebrite to patch some of the vulnerabilities found by Signal and to remove full support for analyzing iPhones.[34][35]
Iirc there was also the part of the story where the exploit for Cellebrite’s thing was included in Signal, and Marlinspike said that data on any device scanning Signal with Cellebrite software would be poisoned.
I’m guessing things might’ve changed since then, as this story is pretty old. I doubt it that they gotten newer versions of Cellebrite to screw them again.
Israeli company Cellebrite sells a device to extract data from locked phones, both Android and iPhones afaik. So indeed I’m guessing their government knows some stuff about the security of both platforms.
Fun fact: comments mentioning Cellebrite get immediately shadow-hidden on Reddit, or at least in some of the main subs.
Source: https://en.wikipedia.org/wiki/Cellebrite
Sounds like it is just malware to me.
Vulnerable software is different from malware.
Iirc there was also the part of the story where the exploit for Cellebrite’s thing was included in Signal, and Marlinspike said that data on any device scanning Signal with Cellebrite software would be poisoned.
What I’m hearing is that even if you aren’t a Signal user, you might benefit from having Signal installed on your device?
I’m guessing things might’ve changed since then, as this story is pretty old. I doubt it that they gotten newer versions of Cellebrite to screw them again.