Apple Hires iPhone Security Expert Jonathan Zdziarski

Let me introduce you to OldSchoolMacGuy, he's been writing forensic analysis software since (probably) before I was born. Johnathon may know more about iOS security than *you* or *I* but I'd wager OldSchoolMacGuy has a very in depth knowledge of the subject matter.

Thanks for the kind words.

My point was simply that it's funny that the media (MacRumors specifically) often refers to him as an expert when his level of expertise is only slightly above that of the average user. He's the guy quick to go to the media and fluff up accomplishments but not really doing any real work.
[doublepost=1489515225][/doublepost]

If he knew more than Johnathan, Apple would have hired him.

Back in 2008 I met with Apple's iOS security team. We showed them a tool we'd developed that pulls out passwords, email history, text messages, location data, network information, browsing history and more from the iPhone. They still claimed it was secure, what we were doing was impossible (despite seeing it right before they own eyes) and refused to work with us. So we worked with Apple's government sales guys and sold the hell out of this product to law enforcement. They've only made minor changes since then which have required very minor work to keep this method of exploiting macOS and iOS security working.

Myself and my boss have spoken about computer forensics (Mac/iOS most often) at multiple MacWorlds, the DoD Cyber Crime Summit multiple years, numerous HTCIA events including their national event each year, and countless others across the world. I've trained law enforcement around the world in Mac/iOS examination. I created the concept and first software which have now become standard features in all major industry forensic tools. I may have some expertise on the topic.

You're assuming this is some big position they've offered him. MacRumors has frequently talked him up quite a bit. The reality is, he's a nobody within the world of computer forensics. Throw his name out at a conference and they'll have no idea who he is. Say someone else's name, like Andy Rosen, and they'll be able to tell you instantly about their contributions to computer security and forensics.

Well, that might actually be a double down on security.

He probably knows more than either you or I regarding the intricacies of iOS security. Also, he’s not necesarilly taking on executive level or even senior engineer level responsibilities. He could be a paid intern for all we know, based on this article.

Regardless, Apple should continue to hire people in the security field. It can only be good for consumers in the fight against black hats, whether individual, or state-sponsored.

Let me introduce you to OldSchoolMacGuy, he's been writing forensic analysis software since (probably) before I was born. Johnathon may know more about iOS security than *you* or *I* but I'd wager OldSchoolMacGuy has a very in depth knowledge of the subject matter.

Oh wow! This seems like a great thing. Will be sad to not have his informative and snarky tweets showing up in my feed anymore, but it's definitely for a good reason. Congrats, dude!

Expert? Dude is a laughing stock in the forensics industry.

Cook will put him to work on new stickers

In what regard? I don't know anything about him outside of what I just read here.

InfoSec is more filled with histrionics and needless drama than any other corner of computing. Name anyone, and half a dozen people will explain why they're actually: [morons | frauds | feds].

Probably why he deleted his Tweets earlier this year.

Perfecting retina unlock scanning for iOS?

Thanks for the kind words.

My point was simply that it's funny that the media (MacRumors specifically) often refers to him as an expert when his level of expertise is only slightly above that of the average user. He's the guy quick to go to the media and fluff up accomplishments but not really doing any real work.
[doublepost=1489515225][/doublepost]

Back in 2008 I met with Apple's iOS security team. We showed them a tool we'd developed that pulls out passwords, email history, text messages, location data, network information, browsing history and more from the iPhone. They still claimed it was secure, what we were doing was impossible (despite seeing it right before they own eyes) and refused to work with us. So we worked with Apple's government sales guys and sold the hell out of this product to law enforcement. They've only made minor changes since then which have required very minor work to keep this method of exploiting macOS and iOS security working.

Myself and my boss have spoken about computer forensics (Mac/iOS most often) at multiple MacWorlds, the DoD Cyber Crime Summit multiple years, numerous HTCIA events including their national event each year, and countless others across the world. I've trained law enforcement around the world in Mac/iOS examination. I created the concept and first software which have now become standard features in all major industry forensic tools. I may have some expertise on the topic.

You're assuming this is some big position they've offered him. MacRumors has frequently talked him up quite a bit. The reality is, he's a nobody within the world of computer forensics. Throw his name out at a conference and they'll have no idea who he is. Say someone else's name, like Andy Rosen, and they'll be able to tell you instantly about their contributions to computer security and forensics.

Unless you're the biggest bu**shi**er, faker with the gift of the gab, I respect a guy who can back up a statement with facts. Kudos.

Re: "Thanks for the kind words"..... lol