by imarid on 11/24/21, 7:31 PM
by BluSyn on 11/24/21, 7:25 PM
I see a lot of pessimism in the comments. But I think this is a great step in the right direction.
Other companies should take note. More of this, please!
by thih9 on 11/24/21, 7:13 PM
I'm surprised to see protection against state sponsored attacks implemented by a company as big as Apple. Is any other 'mainstream' company offering a similar feature?
Warrant canary [0] comes to mind, but that is usually a message to all users, as opposed to notifying an individual user.
[0]: https://en.wikipedia.org/wiki/Warrant_canary
by boomboomsubban on 11/24/21, 7:13 PM
So something like PRISM that targets everybody won't trigger a warning?
by type0 on 11/24/21, 11:10 PM
Will it notify users about cybersecurity threats from the US authorities or will it obey the gag order?
by jaegerpicker on 11/24/21, 7:12 PM
I wonder if this could be used to expose those that are in sensitive position. IE offer attacks at people you think are in important positions and watch how they react to the news. For example if you work somewhere sensitive and you have an accounts not tied the Apple account. The State Sponsored group is probably good enough to see your traffic patterns and to see if they change after you have been notified. Not that I think Apple shouldn't do this but I can see someone being crafty and trying to take advantage of this. There are always trade offs in security!
by kube-system on 11/24/21, 8:27 PM
I see a lot of people in the comments conflating legal requests and attacks. Regardless of your opinion on either of those issues, they are different things.
by raxxorrax on 11/25/21, 2:49 PM
This is a good service since states felt it was necessary to use surveillance powers against the domestic population.
To me that warrant retaliation in my opinion, it would be a case for self-defense. For example isolating the trojan in a honey-pot OS and delivering it to foreign actors cybersecurity research labs. Just make it unfeasible to support such software and it will stop. My country (Germany) sadly is prone to ignore civil liberties. There were home searches because someone called a some minister a penis on Twitter and there were other severe transgressions. Since the law doesn't protect against them anymore, the state has proved that it is not capable for responsible conduct with software the relies on zero-day-exploits which endanger every computer system.
Glad that companies with real security expertise put up the slack here, although they shouldn't have to do that.
by max47 on 11/25/21, 4:07 AM
they'll only do it if the US government allows them to.
Like it or not, if they go against three-letter-agencies in the US, high ranked apple employees will spend years in jail based on the rulings of secret courts where all of your rights are irrelevant. The moment the cia says the word "terrorism", all your rights are gone regardless of how wrong the investigators might be. They can literally declare you guilty without you even knowing you were were accused of anything because according to them, national security is more important than the constitution.
they are on the same level as the ccp
by notkurt on 11/24/21, 8:34 PM
Has anyone put forward some theories as to how they are pulling this off? Are they tapping into iMessage Metadata, scanning crash logs, or something along those lines? While I totally understand the need for them to keep how they are doing this private, I do find it slightly concerning. Unless they are just flagging suspicious iCloud login attempts. If it’s relating to crash logs, it would be nice to know as I’m sure a bunch of privacy focused users have that disabled.
by nabakin on 11/24/21, 7:40 PM
Now if only Apple wouldn't search for CSAM on device, allowed repair shops to get the parts they need from the manufacturer, and provided schematics for repair shops. If they did those things, I might actually buy an iPhone.
by bsd44 on 11/24/21, 7:23 PM
"If Apple discovers activity consistent with a state-sponsored attack"
I am really interested in understanding more about a "state-sponsored attack" as someone who works in Ops and has experience in CyberSec. All these years working in the industry and I had no idea you could identify an "attack" that easily.
by vincentpants on 11/25/21, 5:19 AM
Does it tell you about US sponsored cybersecurity threats?
by iJohnDoe on 11/25/21, 1:52 AM
How can Apple differentiate between state sponsored FISA hacks vs. other hacks or USA hacks?
Before Apple sends a notification, do they cross reference any existing warrants they received and make sure they don’t notify the customer that the US tried to hack their account, or iPhone, or requested their info?
Or are we to assume that Apple only means non-USA based attacks?
Or is the US gov going ape shit right now that all their targets they been infiltrating are going to get notified of that fact?
Or are we to assume anything FISA related means Apple happily and willingly had over the data and really isn’t a hack attempt?
by protomyth on 11/24/21, 7:09 PM
Why do I get the feeling that if the state is China, then it won't get reported as such. I assume their supply chain is more important.
by eptcyka on 11/25/21, 9:23 AM
Yet you still can't download VPN apps in China and Saudi Arabia.
by WarOnPrivacy on 11/25/21, 3:13 AM
The state-sponsored cybersecurity threats I most want to know about are the ones from my country - because that is the state most likely to harm me and my family.
by FridayoLeary on 11/24/21, 10:11 PM
Even if the state in question is the USA? I think Apple should be clear if there are any states whose attacks they might ignore, for the sake of privacy, of course.
by varispeed on 11/24/21, 8:22 PM
It's only possible because Apple is too big too fail. Probably they won't notify about the US snooping, but smaller countries often have smaller budgets that this company, so they can't really do anything about Apple pulling strings.
It's a shame that smaller companies cannot do that without risking being closed down.
by atmosx on 11/24/21, 10:02 PM
by cblconfederate on 11/24/21, 7:11 PM
What if it is illegal to do so?
by chaosisequal on 11/25/21, 10:04 AM
Does this include USA sponsored attacks?
This again another attempt at owning the device or your customer, like that CSAM backdoor wasn’t enough, now they have AI monitoring accounts, connections, etc out of each device.
by lurchpop on 11/24/21, 9:44 PM
What if the state is the US demanding data using NSLs or dragnet warrants?
by calebm on 11/24/21, 8:57 PM
by upofadown on 11/25/21, 12:49 PM
An interesting spin. So Apple might somehow treat just regular threats differently in the past or the future? How does Apple know who paid NSO group to hack their phone?
by questiondev on 11/24/21, 7:56 PM
except in china, i pray that the people of the free world unite from within all countries and say enough is enough to their oppressors. it is wild to
think that we still have ill actors in high ranks that are from
bloodlines upon bloodlines of “ownership” of nations. there really still is a ruling class that has existed forever, sounds like a conspiracy until you look at who is buddies with who
by schleck8 on 11/24/21, 8:47 PM
It's one of the largest enterprises against state-funded specialists and intelligence agencies, this will be an interesting arms race.
by funman7 on 11/24/21, 7:16 PM
What if you opted in to the terms of the Chinese App Store then switch to USA.
by chaosisequal on 11/25/21, 10:02 AM
Will it send notifications also when it is a USA sponsored attack?
What a joke
by fortran77 on 11/25/21, 2:48 AM
So Apple is saying they can’t solve their security problems?
by bsaul on 11/24/21, 11:51 PM
Wonder if that works for USA targeting terrorists and how well that’ll play in court if a terrorist attacks was helped in that way.
Edit : silly me, US doesn’t need that, they can simply ask for the data..
by authed on 11/25/21, 12:49 AM
cybersecurity treats include secret orders by governments to comply to any requests?
by ben_palaskas on 11/24/21, 10:48 PM
completely and absolutely based. I have ambivalent feelings about apple
by zenlf on 11/24/21, 7:14 PM
Unless, it's Chinese government. In that case, Apple handle over their control over database to Guizhou-Cloud Big Data
by trasz on 11/24/21, 9:29 PM
Does this include US-sponsored threats?
by Epitom3 on 11/24/21, 9:33 PM
"trust me bro"
by gambiting on 11/24/21, 8:11 PM
Will it let them know that their own phone has decided that they are a potential pedophile and their photos will be sent unencrypted to some tech centre god knows where where someone will decide whether to report them to authorities or not? Or is that ok to keep secret?