BloodyAlbanian t1_j1duuhm wrote on December 23, 2022 at 4:04 PM

Reply to comment by nicuramar in TikTok Spied On Forbes Journalists - ByteDance confirmed it used TikTok to monitor journalists’ physical location using their IP addresses by BasedSweet

Source when it was 'closed'?

nicuramar t1_j1dvgpb wrote on December 23, 2022 at 4:08 PM

https://googleprojectzero.blogspot.com/2021/12/a-deep-dive-into-nso-zero-click.html?m=1

I’m curious, why would you think it wouldn’t be closed after this long? Exploits like that are generally fixed as soon as possible.

BloodyAlbanian t1_j1e2p4d wrote on December 23, 2022 at 4:57 PM

Nice read. It was my understanding that the Pegasus exploit was never patched. It's probable that they have more malware that we aren't aware of, don't you think?

nicuramar t1_j1e792g wrote on December 23, 2022 at 5:27 PM

Yes, that’s always possible, although I’d say that exploits this serious (zero interaction) are quite rare. One click exploits are already much less powerful for targeted attacks, although can work pretty well for broad attacks.