[Elephant_Canyon]

Zero and zero.

You're living in a fantasy land.

[DrBoomBotz]

You're living in a fantasy land.

Careful, If you question any of the folklore about BB10 then you are an android fanboy.

[z10Jobe]

You're living in a fantasy land.

Actually, I live in Canada.

And I agree. It is a great country.

Posted via CB10

[z10Jobe]

Everything has security holes. BlackBerry is not exempt from that.

Posted via CB10

Nahh... I don't believe you.

When was the last time a BlackBerry was legitimately rooted?

Ya.. I thought so.

Posted via CB10

[thurask]

Nahh... I don't believe you.

When was the last time a BlackBerry was legitimately rooted?

Ya.. I thought so.

Posted via CB10

2012.

Of course, that never happened (according to you), neither did this or this. But keep living in your fantasy.

[TgeekB]

But....But.....But....

[z10Jobe]

2012.

Of course, that never happened (according to you), neither did this or this. But keep living in your fantasy.

I said legitimately.

Posted via CB10

[Superdupont 2_0]

The BB10 CVE Details link you posted contradicts this.

It also doesn't list any Android runtime exploits either (like Stagefright).

AFAIK the Android Runtime was not really affected by Stagefright, there was no exploit, no concept.

But still, the CVEs are indeed not giving us the full picture.
There is a market for 0days, there are traders or "security companies" like Zerodium.
However, it seems they mainly sell exploits for iOS and Android.

Posted via CB10

[Superdupont 2_0]

Careful, If you question any of the folklore about BB10 then you are an android fanboy.

I would group the security specialists for iOS and Android into "post-factual".


Posted via CB10

[thurask]

I said legitimately.

Posted via CB10

Define "legitimately". If you disqualify Dingleberry because it wasn't an official BlackBerry tool then every CVE on Android and iOS is similarly out the window since Google and Apple consider them bugs, not features.

[conite]

I said legitimately.

Posted via CB10

How about this?

http://www.cellebrite.com/Pages/blac...kberry-devices

[hulk go]

How about this?

http://www.cellebrite.com/Pages/blac...kberry-devices

priv???

[conite]

priv???

"Supported devices include:*BB 10, Z30 STA 100, Z10, SQC 100, Curve 9315, Curve 9220, Curve 9720"

[hulk go]

"Supported devices include:*BB 10, Z30 STA 100, Z10, SQC 100, Curve 9315, Curve 9220, Curve 9720"

For a full list of devices, go to My.Cellebrite.

[conite]

For a full list of devices, go to My.Cellebrite.

I'm responding to a poster who thinks BB10 is impenetrable.

[hulk go]

i was just wondering if the priv can support it but nevermind

[z10Jobe]

Define "legitimately". If you disqualify Dingleberry because it wasn't an official BlackBerry tool then every CVE on Android and iOS is similarly out the window since Google and Apple consider them bugs, not features.

Ummmm....let's see... a PlayBook from 2012 in developer mode, a partially retracted article from the Register about a potential exploit, and a theoretical exploit on bb10 versions prior to 10.2.0 are the best that you can come up with? Does anybody still use 10.2.0? Has a bb10 phone ever been rooted? Just a question.

I remain quite confident that my 4 year old z10 on 10.3.2 is quite secure.

Not that I really care that much about security and neither does the market. I was just responding to another poster implying that Android was more secure. Maybe they got an email from Google implying this. (joke from another thread).



Posted via CB10

[Superdupont 2_0]

I'm responding to a poster who thinks BB10 is impenetrable.

C'mon guys, nobody really thinks that BB10 is perfectly impenetrable, but for obvious reasons it is much harder to penetrate than iOS.

We are talking about statistical probability.

And just from a glance at the CVE statistics one can already conclude that iOS will lose against BB10 in any statistical threat model.

Some might argue that the probability that iOS loses against BB10 is only 99,84% and not 99,99%, that's fine


Posted via CB10

[TgeekB]

C'mon guys, nobody really thinks that BB10 is perfectly impenetrable, but for obvious reasons it is much harder to penetrate than iOS.

We are talking about statistical probability.

And just from a glance at the CVE statistics one can already conclude that iOS will lose against BB10 in any statistical threat model.

Some might argue that the probability that iOS loses against BB10 is only 99,84% and not 99,99%, that's fine


Posted via CB10

People in these forums actually do think it's impenetrable.
I agree with you though, there is no doubt BB10 was built with security in mind and does an excellent job of it.

[z10Jobe]

C'mon guys, nobody really thinks that BB10 is perfectly impenetrable, but for obvious reasons it is much harder to penetrate than iOS.

We are talking about statistical probability.

And just from a glance at the CVE statistics one can already conclude that iOS will lose against BB10 in any statistical threat model.

Some might argue that the probability that iOS loses against BB10 is only 99,84% and not 99,99%, that's fine


Posted via CB10

Thank you for pointing out the obvious.

Although, I will concede that tongue in cheek humour is not always apparent in text posting.

Posted via CB10

[sonicpix]

Well, Apple was not willing to help the FBI break into a phone or provide the tools. BB has supposedly aided law enforcement. Which phone is more secure? For what purpose? Who is "law enforcement?"

edited to add: whoops seems like this may have been discussed further in the thread but I replied before reading that far.

Apple has also cooperated with Law Enforcement. They do so regularly the San Bernadino thing was for show.

Posted via CB10

[anon(9721108)]

How much weight does this story have?

I found this article years ago by accident once and dug it up again

http://www.pcworld.com/article/20313...ification.html

-sent from a beautiful Bold 9900

[Invictus0]

AFAIK the Android Runtime was not really affected by Stagefright, there was no exploit, no concept.

But still, the CVEs are indeed not giving us the full picture.
There is a market for 0days, there are traders or "security companies" like Zerodium.
However, it seems they mainly sell exploits for iOS and Android.

Posted via CB10

It was low risk (only an issue if you had android apps with MMS access installed IIRC) but BlackBerry still released a notice and patch.

http://forums.crackberry.com/blackbe.../#post11838652

[Superdupont 2_0]

It was low risk (only an issue if you had android apps with MMS access installed IIRC) but BlackBerry still released a notice and patch.

http://forums.crackberry.com/blackbe.../#post11838652

Ah, thank you for reminding me.
I only remembered that it was a minor issue for BB10, but really epic for Android.

Posted via CB10

[cribble2k]

Zero and zero.

Posted via CB10

What are you basing that on?

Blind faith?