[讨论]iPhone漏洞价值比Android漏洞还不值钱

楼主: kyle5241 (kyle)   2019-09-04 13:11:36
https://tinyurl.com/y67o48xk
Android exploits has overtaken iOS with leading exploit broker Zerodium for
the first time since it was founded. In fact, such is the “flood” of
exploits now targeting iOS, that the broker is turning some away.
Android 漏洞价值现在超越了iOS。因为iOS 漏洞太多了,过量的供给导致仲介
还拒绝了一些漏洞
A full-chain (0-click, no user intervention) Android exploit now tops the
payments menu at $2.5 million, while the same type of iOS attack software
pays just $1 million, down from $1.5 million. Zerodium explains that “the
amounts paid to researchers to acquire original zero-day exploits depend on
the popularity and security level of the affected software/system, as well as
the quality of the submitted exploit.”
完整的(不需要使用者操作的)Android漏洞现在值超过250万美元,而同样的攻击在iOS
上已经降到了100万美元(原本150万美元)
According to a Zerodium statement, “during the last few months, we have
observed an increase in the number of iOS exploits being developed and sold
by researchers from all around the world. The zero-day market is so flooded
by these iOS exploits that we've recently started refusing some them.”
在过去几个月,我们观察到大量的iOS侵入方式被开发了而且被世界各地的研究人员拍
卖。市场上充满著各式各样的iOS侵入法,所以我们甚至必须要拒绝一些漏洞。
And as with all other kinds of markets, pricing analysis uncovers significant
trends that are impacting the market in real-time. Despite the news flow of
the last week, this is a surprise as far as Apple is concerned with the
impression having landed with many of its users that it significantly safer
and more locked down that Android.
这对苹果来说是一种惊奇,因为苹果向来认为比Android 安全很多
心得:
当iOS漏洞没那么值钱的时候大家就没兴趣找了啦~
作者: sunskist0831 (好男不当兵)   2019-09-04 21:30:00
某K只会推对安卓不利的新闻 苹果不利的就装没看到

Links booklink

Contact Us: admin [ a t ] ucptt.com