Dissecting an iOS Zero-Day Exploit: QuaDream's Mobile Spyware Analysis
Objective-See Foundation via YouTube
Overview
Explore a detailed technical conference talk examining QuaDream's sophisticated iOS spyware through the expert analysis of Microsoft's Senior Mobile Security Researcher Christine Fossaceca and Citizen Lab's Senior Researcher Bill Marczak. Delve into the discovery and reverse engineering of the "KingsPawn" spyware and "ENDOFDAYS" exploit, used in zero-click attacks against journalists, political opposition figures, and NGO workers worldwide. Learn about the evolution of Private Sector Offensive Actors (PSOAs), their surveillance capabilities, and the technical intricacies of modern iOS zero-day exploits. Gain insights into the state-of-the-art mobile threats, attack surface analysis, and the implications for organizational security. The presentation includes comprehensive analysis of the exploit chain, payload mechanics, and practical understanding of sophisticated mobile surveillance tools in today's threat landscape.
Syllabus
OBTS v7: Sweet QuaDreams or Nightmare before Christmas? Dissecting an iOS 0-Day. Marczak & Fossaceca
Taught by
Objective-See Foundation