Security Now (Video) SN 1028: AI Vulnerability Hunting - The End of Jailbreaking
Jun 4, 2025
Delve into the exciting results from the Pwn2Own 2025 hacking competition in Berlin, showcasing the latest strategies employed by top hackers. Explore the alarming rise of SVG image abuses and the inventive use of OpenAI's model that uncovered a zero-day exploit in the Linux kernel. Discover the ethical implications of iOS jailbreaking as a notable developer retires, and enjoy entertaining insights about classic sci-fi films mixed with serious cybersecurity themes.
AI Snips
Chapters
Books
Transcript
Episode notes
iOS Jailbreaker Quits Exploitation
- Swiss iOS jailbreak expert Seguza announced giving up kernel exploitation on iOS due to Apple making fundamental security changes.
- His work on uncover jailbreak and exploits stopped with iOS 14's deeper architectural protections.
Apple's Kernel Heap Isolation
- Apple shifted iOS security by redesigning allocators and isolating kernel objects in separate memory heaps.
- This fundamental fix stopped many classical exploit strategies by eliminating reliable cross-zone attacks.
Disable SVG Scripting in Email
- Disable or block JavaScript execution in SVG images to reduce phishing and malware risks in emails.
- Prioritize inactive email content handling to protect users from dynamic malicious SVG payloads.
