Olivia
Online
#FreeTheSandbox
@FreeTheSandbox
An official account for the #FreeTheSandbox Initiative that promote local admin rights for on *our* smartphones.
It's simple: Local admin = more innovation!
Planet Earth
Joined November 2019
10 Following
6K Followers
313 Posts
Pinned Tweet
A friendly reminder: hundreds of organizations develop, and sell / resell offensive cyber capabilities vs. smartphones. Oftentimes, zero-clicks.
And yet, as of April 4th, 2021 - the sandbox developed by @Apple and @Google actively helps them to hide.
It's time to #FreeTheSandbox
You may want to stay on 15.6 if you aim for full access to your device. This is unfortunate that we must keep the device in a vulnerable state to get a local admin on our phone... but this is the reality. Hopefully it will be fixed soon with #FreeTheSandbox
[IMPORTANT] Using an iPhone or iPad? make sure to update to the latest iOS and iPadOS that fixes two vulnerabilities that may have been exploited in the wild in one-click and potentially also zero-click attacks!
More details on Apple's website: https://t.co/4Ik9WKgqf9
![ZecOps's tweet photo. [IMPORTANT] Using an iPhone or iPad? make sure to update to the latest iOS and iPadOS that fixes two vulnerabilities that may have been exploited in the wild in one-click and potentially also zero-click attacks!
More details on Apple's website: https://t.co/4Ik9WKgqf9 https://t.co/izm6txjzRR](https://pbs.twimg.com/media/FaYucToUUAAvlVP.jpg)
Fake Droids: Your New Android Device is Actually an Old Android 6 via @ZecOps Blog https://t.co/m1xaaivram
Surprise surprise! Another day another 0day exploited in the wild https://t.co/0D6C7cVQn0
Incremental patches/mitigations will never work against determined individuals. The only thing that will help to reduce mass surveillance on mobile phones is more eyes. #FreeTheSandbox 👊
Who to follow
Chariz 📦
@CharizTeam
Welcome to Chariz! We host your favorite tweaks. Follow and tap the bell 🔔 to keep up with new Chariz releases! — Find us on Mastodon: @[email protected]
Huke 
@08Tc3wBB
iOS/macOS Security Researcher. Jailbreak exploit Developer.
BawAppie
@BawAppie
iOS Tweak Developer | Merona Repo Maintainer
Demo: https://t.co/NRnLmq4Cz4
Remote + LPE on iOS 15.1 ?
https://t.co/TpX8frYVL1
iOS 15.2 is out and it is wild. Many remote and local security issues. If you care about your iPhone/iPad security you should update soon.
[Source: https://t.co/12IWd9tUyF]
![ihackbanme's tweet photo. iOS 15.2 is out and it is wild. Many remote and local security issues. If you care about your iPhone/iPad security you should update soon.
[Source: https://t.co/12IWd9tUyF] https://t.co/47e8jebFod](https://pbs.twimg.com/media/FGjHuEEXMAA_19X.jpg)
The day is coming. Consumers are waking up. Saying "no more" - you can't secure the platform 100% by definition - let us try too. #FreeTheSandbox #LocalAdminOnMobile #TheSpiceMustFlow
Mobile is a platform where attackers gets a better access than the victim trying to protect themselves, example #28241: Google Warns of New Android 0-Day Vulnerability Under Active Targeted Attacks https://t.co/JBPWQ2Z8pk
@AOC What do you think about the lack of local-admin rights on smartphones allowing attackers to stay hidden, and users cannot do anything about it? Don't you think it's more dangerous to democracy than some of the other things you highlight (which are important too) ?
[3/3] Let's acknowledge the reality: time after time, attack after another, smartphones are as breakable, if not even more than our computers.
We rely on smartphones for everything. We have to be able to secure them.
#LocalAdminOnSmartphones #FreeTheSandbox #DeviceNeutrality
Hackers continuously able to break the iOS (and most of the time Android too) security models. Successfully compromising devices remotely while obtaining full access. Hackers have better access than what device-owners are allowed to have !
Why ?
Team PangU pwned iPhone13 Pro remote jailbreak on the day1 of TianfuCup, will take $300k as reward and ranked as #1 currently.
[2/N] How are we supposed to defend ourselves when it's not a level playing field? It's time to give users local-admin rights. It's time to #FreeTheSandbox and level the playing field.
[BREAKING] CVE-2021-30858 iOS WebKit RCE 0-day in the wild: https://t.co/3zGZtPbMte including POC. Can be chained with CVE-2021-30883 and used in 1-clicks and water-holing attacks against iOS users.
Update to the latest version as soon as possible.
We can confirm that the recently patched iOS 15.0.2 vulnerability, CVE-2021-30883, is also accessible from the browser: perfect for 1-click & water-holing mobile attacks. This vulnerability is exploited in the wild. Update as soon as possible.
The time has come 🥶. #FreeTheSandbox
Some technical details and POC of the IOMFB Integer (CVE-2021-30883) Overflow are already available by the fantastic @AmarSaar https://t.co/guKVUeeGJD
This vulnerability is possibly related to: CVE-2021-30807, also in IOMobileFrameBuffer, that was patched in iOS 14.7.1. The vulnerability provides to attackers kernel privileges after they already gained initial code execution capabilities on the device.
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers