An Examination of Zerodium's Price Chart

Ryan Carboni ryacko at gmail.com
Fri Feb 10 04:05:54 PST 2017 

https://www.zerodium.com/program.html

To remotely jailbreak iOS is worth one and a half million dollars.

To break OpenSSL, $50,000.

To hack your antivirus program, $40,000.

To hack Tor Browser, $30,000.

To hack flash player, $100,000.

It appears the only secure way to access the internet is using iOS, but
only to connect to static websites hosted by other smartphones, using
(probably) PolarSSL.

I recommend reading Personal Privacy in an Information Society, written in
1977.


> A recently publicized example of a government information system with
> inadequate security involved the computer and telecommunications system,
> SSADARS, which connects private insurance companies acting as Medicare
> intermediaries for the government with the Social Security Administration
> (SSA) data file. The Social Security Administration reported at the
> Commission hearings on Medical Records in July 1976 that its longstanding
> policy of protecting the confidentiality of individually identifiable
> information in its files had been adequately carried out in its
> administrative and technical safeguards. On October 23, 1976, however, SSA
> announced that it had discovered that it was mistaken in its belief that
> there was "no way the Medicare intermediaries and carriers can use their
> telecommunications system to gain access to the files used to administer"30
> other SSA programs. SSA staff found that the SSADARS terminals installed in
> the offices of two intermediaries could have been altered relatively
> easily, thereby permitting access to files other than the Medicare
> eligibility files the intermediaries needed to see. Although no actual
> access to other SSA program information is believed to have occurred, the
> technical safeguards to assure the confidentiality of information in the
> SSADARS system were not as effective as SSA had thought.


 In fact, all the problems in our modern day have been predicted long
before CFAA and Wargame (the movie) were ever put to paper.


The fact that no action has been taken is alarming in itself, and
indicative of some sort of mass undiagnosed neurological disease.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: text/html
Size: 2705 bytes
Desc: not available
URL: <http://lists.cpunks.org/pipermail/cypherpunks/attachments/20170210/ae419643/attachment.txt>

More information about the cypherpunks mailing list