Amazon Shuts Down NSO Group Infrastructurehttps://www.vice.com/en/article/xgx5bw/amazon-aws-shuts-down-nso-group-infrastructure
The move comes as activist and media organizations publish new findings on the Israeli surveillance vendor.
NSO Group’s Pegasus spyware, licensed to governments around the globe, can infect phones without a click
@AmnestyTech saw an iOS 14.6 device hacked with a zero-click iMessage exploit to install Pegasus. We at @citizenlab also saw 14.6 device hacked with a zero-click iMessage exploit to install Pegasus. All this indicates that NSO Group can break into the latest iPhones.
May I have an invite to chat please? (i will follow all the rules!)
May I have an invite please? I will follow all rules.
Invites Sent via PM
The most important talking points are the fact that:
-researchers/vendors must share vulnerability reports with state agencies within two days of a report
-researchers are not allowed to release bug details before vendors had a reasonable chance to patch, except on rare occasions
-the new law also bans zero-day sales and vulnerability hoarding
-researchers are also banned from sharing data with overseas organizations (bug bounty platforms, hacking contests, CERT teams), except with product vendors & service providers directly