Comment by contingencies

2 years ago

APTs probably routinely identify and target such developers. With multi-million dollar payouts for single bugs and high state level actor attention, employee profiling is clearly a known attack vector and internal security teams probably now brief on relevant opsec. FWIW the only Apple kernel developer I knew has somewhat recently totally removed themselves from LinkedIn.

2 comments

contingencies

AtlasBarfed 2 years ago

People pretend that bugs don't exist.

Not the software kind, the good old listening devices.

There's a deep tool chest of spying. Heck, remember when keyboard presses were harvested through a wall? That was at least a decade ago. I think audio of key presses can be disambiguated.

saagarjha 2 years ago

People who work on the kernel are not hard to find.