[tor-talk] Beware of insecure mobile Tor apps such as Orion/Torion
InterN0T
intern0t at protonmail.com
Tue Jul 18 15:30:44 UTC 2017
A security advisory for the Orion/Torion iOS app has recently been released to the public.
The developer basically took Mike Tigas' iOS app and introduced several vulnerabilities to it that could be used to track users, and the developer also forgot to mention existing vulnerabilities that could also be used to identify users.
Last but not least it also contains several known issues in relation to the embedded Tor client and OpenSSL libraries.
The advisory has been attached to this email, and can also be found on the Full Disclosure mailing list and various other websites.
-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: Orion Browser - All Versions - Multiple Known Vulnerabilities - PUBLIC RELEASE.txt
URL: <http://lists.torproject.org/pipermail/tor-talk/attachments/20170718/4c3134e5/attachment.txt>
More information about the tor-talk
mailing list