You can login if you already have an account or register by clicking the button below.
Registering is free and all you need is a username and password. We never ask you for your e-mail.
[+]jxfaith0 points7 points7 points
ago
(edited ago)
[–]jxfaith0 points
7 points
7 points
(+7|-0)
ago
(edited ago)
Article sums it up fairly well: an independent security researching team was approached by the FBI and offered a sum of money to disclose an iPhone software exploit that enabled them to create a hardware bypass to the PIN attempt tracker.
As to the term "Gray-hat", the article also elaborates. Gray as in the literal middle between black and white. White hat hackers publicly disclose their findings in hopes of improving security. Black hat hackers do not disclose their findings in hopes of profiting from them exclusively. Grey hat hackers tend to disclose their findings, but typically only to governments or corporations and usually if the price is right.
[–]Bobsentme2 points
5 points
7 points
(+7|-2)
ago
While those are technically true, you're not really explaining black, white, and grey very well.
White Hats are the security researchers. They are legitimately researching software for exploits that COULD be used. If they find one, they report it, get professional credit and bragging rights, and move on. They tend to be non-intrusive, non-destructive, and work with companies or vendors to help patch holes before the bad guys find them.
Black Hats are the "Hackers" who will practically use ANY MEANS NECESSARY (even destructive ones) to obtain access to what they want. They don't ask permission, they can and will destroy systems, all for their amusement or benefit. This includes selling exploits to other hackers before White Hats find out about them. If they manage to create exploits, they get street cred, not professional cred.
Grey Hats are the Pentesters, as they will only attack targets they've been given explicit permission to attack, but they'll also use the same methods your average hacker would use. Grey hats get both Professional credit and street cred if they find something new and document / work with the people it could affect.
It used to be white vs black, but now that both sides are dipping into research AND actual exploits, everyone's hat is getting cleaner or dirtier, and thus we're all becoming grey.
[–]ItzDaWorm0 points
2 points
2 points
(+2|-0)
ago
There are people who are as familiar with the iPhone hardware and software as Apple engineers. These are the guys and gals who bring you jailbreaks, unsigned apps, etc.
This article is proposing that the FBI hired them to crack the security.
view the rest of the comments →
[–] pessimisticsteel 0 points 1 point 1 point (+1|-0) ago
ELI5
[–] jxfaith 0 points 7 points 7 points (+7|-0) ago (edited ago)
Article sums it up fairly well: an independent security researching team was approached by the FBI and offered a sum of money to disclose an iPhone software exploit that enabled them to create a hardware bypass to the PIN attempt tracker.
As to the term "Gray-hat", the article also elaborates. Gray as in the literal middle between black and white. White hat hackers publicly disclose their findings in hopes of improving security. Black hat hackers do not disclose their findings in hopes of profiting from them exclusively. Grey hat hackers tend to disclose their findings, but typically only to governments or corporations and usually if the price is right.
[–] Bobsentme 2 points 5 points 7 points (+7|-2) ago
While those are technically true, you're not really explaining black, white, and grey very well.
White Hats are the security researchers. They are legitimately researching software for exploits that COULD be used. If they find one, they report it, get professional credit and bragging rights, and move on. They tend to be non-intrusive, non-destructive, and work with companies or vendors to help patch holes before the bad guys find them.
Black Hats are the "Hackers" who will practically use ANY MEANS NECESSARY (even destructive ones) to obtain access to what they want. They don't ask permission, they can and will destroy systems, all for their amusement or benefit. This includes selling exploits to other hackers before White Hats find out about them. If they manage to create exploits, they get street cred, not professional cred.
Grey Hats are the Pentesters, as they will only attack targets they've been given explicit permission to attack, but they'll also use the same methods your average hacker would use. Grey hats get both Professional credit and street cred if they find something new and document / work with the people it could affect.
It used to be white vs black, but now that both sides are dipping into research AND actual exploits, everyone's hat is getting cleaner or dirtier, and thus we're all becoming grey.
[–] pessimisticsteel ago
Thank you, great answer.
[–] ItzDaWorm 0 points 2 points 2 points (+2|-0) ago
There are people who are as familiar with the iPhone hardware and software as Apple engineers. These are the guys and gals who bring you jailbreaks, unsigned apps, etc.
This article is proposing that the FBI hired them to crack the security.