TLDR:
“your computer can be infected by clicking on a single link … please click on this single
link.”
Is this an IQ test?
Did I pass?
On Jul 9, 2023, at 2:51 PM, Todd Pisek via cctalk <cctalk(a)classiccmp.org> wrote:
[EXTERNAL EMAIL]
Be aware that clicking on a malicious url can result on malware or spyware being installed
on your machine without any further action on your part. All browsers have
vulnerabilities. The most famous of these was the older version of Pegasus by NSO back in
the 2014-2016 timeframe. These so called 1-click exploits are well known to bad actors.
It’s a continuous cat and mouse game between exploit writers and infosec. For the
interested, look at this report regarding Apple and the “Trident” series of exploits from
2016.
https://info.lookout.com/rs/051-ESQ-475/images/pegasus-exploits-technical-d…
—-Todd
P.S. Exploits have evolved considerably since Trident and now include 0-click exploits.
See Google’s Project Zero for instance.