frontpage.
newsnewestaskshowjobs

Made with ♥ by @iamnishanth

Open Source @Github

Open in hackernews

Tachy0n: The Last 0day Jailbreak

https://blog.siguza.net/tachy0n/
130•todsacerdoti•4h ago

Comments

ivanjermakov•3h ago
If this is the case Apple employed an amazing strategy. By locking all ways to possibly root their devices they patch vulnerabilities discovered for free by jailbreak devs.
ejpir•3h ago
but they haven't, the article says the "private" community still has exploits and apple patches them. The public, like the dev, for some reason, don't anymore.
tptacek•3h ago
They're exclusive to private communities because they're very expensive, and getting more expensive over time; in other words, Apple's strategy has driven the cost of exploiting iOS up.

Anything public is dead, which is what you want to see.

bri3d•2h ago
I’m not sure I agree with the premise here, although I agree with the conclusion w.r.t Apple specifically.

I’m 100% positive from experience doing VR in several non-iOS spaces that increased exploit value leads to fewer published public exploits, but! This is not a sign that there are fewer available exploits or that the platform is more difficult to exploit, just a sign that multiple (and sometimes large numbers) of competing factions are hoarding exploits privately that might otherwise be released and subsequently fixed.

As a complementary axiom, I believe that exploit value follows target value more closely than it does exploit difficulty, because the supply of competent vulnerability researchers is more constrained than the number of available targets. That is to say, someone will buy a simple exploit that pops a high value target (hello, shitty Android phones) for much more money than a complex exploit that pops a low value target. There are plenty of devices with high exploit value and low exploit publication rate that also have garbage security.

With that said, Apple specifically are a special (and perhaps the only) case where they are “winning” and people are genuinely giving up on research because the results aren’t worth the value. I just don’t think this follows across the industry.

hsbauauvhabzb•2h ago
Is this actually true? Jailbreaks are more or less the same exploits used by things like Pegasus, the exploits are probably worth more to the individuals that discover them than the ability to give their friends access to side loaded apps
numpad0•1h ago
Jailbreaks need an itch to scratch. There isn't one for Ubuntu Desktop.
weinzierl•2h ago
I've heard Apple pays a million for Jailbreaks now. That's the lower bound for the price on the free market.
ThinkBeat•38m ago
Is there a way to contact Apple to apply for millions of dollars if one has a jailbreak?

X: Hi AppLE I haz jailb8?

Or is it via one of the intermediaries?

Or is there an email or some such that is published? (That will not to straight to 1st level support and forgotten about)

charcircuit•32m ago
https://security.apple.com/bounty/
dylan604•18m ago
I'd be really careful who you're telling you have jailb8. That kind of stuff is illegal pretty much everywhere, and if you're the type of person that has it, you're disgusting. You should seek therapy. Then again, go ahead and tell everyone. It's good to get your type off the streets
Bender•6m ago
It may be they believe they created a new word trying to sound how a l33t hax0r would present themselves and did not realize it was already in use. [1]

[1] - https://www.urbandictionary.com/define.php?term=jailbait

dymk•3m ago
Can you really not tell from context what they mean, even though that slang has a different meaning?
conradev•16m ago
> now

That boundary was broken in 2015, about a decade ago: https://www.dailymail.co.uk/sciencetech/article-3301691/New-...

yjftsjthsd-h•2h ago
> The way he managed to beat a trillion dollar corporation was through the kind of simple but tedious and boring work that Apple sucks at: regression testing.

> Because, you see: this has happened before. On iOS 12, SockPuppet was one of the big exploits used by jailbreaks. It was found and reported to Apple by Ned Williamson from Project Zero, patched by Apple in iOS 12.3, and subsequently unrestricted on the Project Zero bug tracker. But against all odds, it then resurfaced on iOS 12.4, as if it had never been patched. I can only speculate that this was because Apple likely forked XNU to a separate branch for that version and had failed to apply the patch there, but this made it evident that they had no regression tests for this kind of stuff. A gap that was both easy and potentially very rewarding to fill. And indeed, after implementing regression tests for just a few known 1days, Pwn got a hit.

And now I wonder how many other projects are doing this. Is anyone running a CI farm running historical vulnerabilities on new versions of Linux/FreeBSD/OpenWRT/OpenSSH/...? It would require that someone wrote up each vulnerability in automated form (a low bar, I think), have the CI resources to throw at it (higher bar, though you could save by running a random selection on each new version), care (hopefully easy), and think of it (surprisingly hard).

KennyBlanken•2h ago
> And now I wonder how many other projects are doing this.

If by 'projects' you mean intelligence agencies, then I would say it's safe to assume at least the G10 intelligence agencies are doing this along with Russia, China, NK - and likely a huge number of private groups.

Reinvent the Wheel

https://endler.dev/2025/reinvent-the-wheel/
152•zdw•4h ago•87 comments

Tachy0n: The Last 0day Jailbreak

https://blog.siguza.net/tachy0n/
130•todsacerdoti•4h ago•15 comments

I used o3 to find a remote zeroday in the Linux SMB implementation

https://sean.heelan.io/2025/05/22/how-i-used-o3-to-find-cve-2025-37899-a-remote-zeroday-vulnerability-in-the-linux-kernels-smb-implementation/
294•zielmicha•10h ago•91 comments

Using the Apple ][+ with the RetroTink-5X

https://nicole.express/2025/apple-ii-more-like-apple-5x.html
18•zdw•3h ago•0 comments

The Logistics of Road War in the Wasteland

https://acoup.blog/2025/05/23/collections-the-logistics-of-road-war-in-the-wasteland/
35•ecliptik•4h ago•13 comments

Good Writing

https://paulgraham.com/goodwriting.html
138•oli5679•9h ago•157 comments

Show HN: Rotary Phone Dial Linux Kernel Driver

https://gitlab.com/sephalon/rotary_dial_kmod
268•sephalon•11h ago•36 comments

Lone coder cracks 50-year puzzle to find Boggle's top-scoring board

https://www.ft.com/content/0ab64ced-1ed1-466d-acd3-78510d10c3a1
87•DavidSJ•6h ago•21 comments

The Xenon Death Flash: How a Camera Nearly Killed the Raspberry Pi 2

https://magnus919.com/2025/05/the-xenon-death-flash-how-a-camera-nearly-killed-the-raspberry-pi-2/
166•DamonHD•12h ago•61 comments

Hong Kong's Famous Bamboo Scaffolding Hangs on (For Now)

https://www.nytimes.com/2025/05/24/world/asia/hongkong-bamboo-scaffolding.html
140•perihelions•12h ago•35 comments

Scientific conferences are leaving the US amid border fears

https://www.nature.com/articles/d41586-025-01636-5
95•mdhb•2h ago•17 comments

An Almost Pointless Exercise in GPU Optimization

https://blog.speechmatics.com/pointless-gpu-optimization-exercise
17•atomlib•3d ago•2 comments

Exposed Industrial Control Systems and Honeypots in the Wild [pdf]

https://gsmaragd.github.io/publications/EuroSP2025-ICS/EuroSP2025-ICS.pdf
29•gnabgib•6h ago•0 comments

One of the Most Popular Games on the Planet

https://kotaku.com/grow-a-garden-roblox-5-million-active-users-record-pc-1851781824
10•bryan0•2d ago•2 comments

The Last Nomads

https://www.thedial.world/articles/news/issue-28/georgia-adjara-highlands-nomads
12•Thevet•2d ago•1 comments

Show HN: F2 – Cross-Platform CLI Batch Renaming Tool

https://github.com/ayoisaiah/f2
94•ayoisaiah•8h ago•17 comments

Peer Programming with LLMs, for Senior+ Engineers

https://pmbanugo.me/blog/peer-programming-with-llms
72•pmbanugo•10h ago•35 comments

Find Your People

https://foundersatwork.posthaven.com/find-your-people
714•jl•1d ago•254 comments

Live facial recognition cameras may become 'commonplace' as police use soars

https://www.theguardian.com/technology/2025/may/24/police-live-facial-recognition-cameras-england-and-wales
117•c-oreills•7h ago•88 comments

Root for your friends

https://josephthacker.com/personal/2025/05/13/root-for-your-friends.html
369•rez0123•1d ago•144 comments

Trellis (YC W24) Is Hiring founding SDR to help automate healthcare paperwork

https://www.ycombinator.com/companies/trellis/jobs/7Ru1X1P-founding-sdr
1•macklinkachorn•7h ago

Is Astrophotography Without Tracking Possible?

https://astroimagery.com/astrophotography/heres-how-to-do-astrophotography-without-tracking/
19•astroimagery•3d ago•8 comments

The legacy of the iconic Nakagin capsule tower

https://www.designboom.com/architecture/moma-nakagin-capsule-tower-exhibition-many-lives-museum-modern-art-new-york-05-23-2025/
84•pseudolus•11h ago•23 comments

Show HN: 1 min workouts for people who sit all day

https://shortreps.com
80•melvinzammit•3h ago•29 comments

Is America Headed for an Age of Dumb Phones?

https://www.businessinsider.com/appstinence-movement-tech-lovers-dumping-smartphones-age-of-dumb-phones-2025-5
12•herbertl•1h ago•23 comments

Why Algebraic Effects?

https://antelang.org/blog/why_effects/
270•jiggawatts•21h ago•167 comments

AI, Heidegger, and Evangelion

https://fakepixels.substack.com/p/ai-heidegger-and-evangelion
105•jger15•10h ago•58 comments

voyage-3.5 and voyage-3.5-lite: improved quality for a new retrieval frontier

https://blog.voyageai.com/2025/05/20/voyage-3-5/
24•fzliu•2d ago•5 comments

The Verse Calculus: A Core Calculus for Functional Logic Programming [pdf]

https://simon.peytonjones.org/assets/pdfs/verse-March23.pdf
8•droideqa•3h ago•1 comments

'Crypto king' turned NYC townhouse into torture chamber to gain partner Bitcoin

https://www.nbcnewyork.com/new-york-city/manhattan-crypto-kidnapping-torture-bitcoin-password/6277345/
8•zerosizedweasle•1h ago•1 comments