If you're following the situation in Iran, this one is of interest to you.

Today, we're publishing a story that I find very important for many reasons.

We can prove how the regime in Iran is using facial recognition software to surveil its citizens. We have obtained videos showing the software in a live-scenario, at metro stations in Teheran. We have contracts, and we have had a look at the code, built by the Russian company Ntechlab whose algorithms are deemed to be best-in class.

We spoke with a dozen people who know the regime, either because they had to flee after being imprisoned or from a technical point of view.

All of this, and more, you can find in our reporting, #EyesOfIran. Here are the links:

SPIEGEL: https://www.spiegel.de/ausland/iran-so-gnadenlos-spaeht-regime-die-eigene-bevoelkerung-aus-ein-insider-packt-aus-a-7990ef28-3c9d-427b-be9a-5f46d06bea6c?giftToken=7fdb6b96-b2f1-4799-b8ff-e55fed5496d1

Standard: https://www.derstandard.at/story/3000000310751/ein-regime-im-ueberlebensmodus-leak-zeigt-irans-massive-ueberwachung-im-land?ref=niewidget

ZDF: https://www.zdf.de/play/magazine/frontal-das-magazin-100/datenleak-iran-ueberwachung-gesichtserkennung-software-100

Forbidden Stories: https://forbiddenstories.org/iran-regime-monitors-citizens/

Browser based ES/Mac Monitor log analyzer

- Story timelines
- Sigma rule matching
- In-depth process tree analyzer
- Much much more!

Amazing work by my coworker @txhaflaire.bsky.social

Check it out! https://es.decompiler.dev/

#macos #malware #reverseengineering #threathunting #dfir

Jamf analyzed an iOS Predator implant that disables rendering of the green and orange dots to hide microphone & camera recording by the spyware. It hooks methods inside SpringBoard and mediaserverd. Apple abandoned mediaserverd in iOS 18, and simple user-space hooking shouldn't work on any modern iPhone due to Exclaves. But Forbes now relates that research to iOS 26.2 and 26.3 updates 🤔🤦‍♀️

https://www.jamf.com/blog/predator-spyware-ios-recording-indicator-bypass-analysis/
https://www.forbes.com/sites/kateoflahertyuk/2026/02/20/how-apple-iphone-spyware-can-bypass--orange-and-green-dot-indicators/

Reminder that Apple is hosting an event on March 5 for developers building software on Apple’s platforms focused on Security.

We're going to present all the technologies that we utilize to make iOS the most secure platform in the world. This is a comprehensive event covering writing security-sensitive components in Swift, Memory Integrity Enforcement (MIE), Pointer Authentication (PAC), hardened allocators, and sandboxing/attack-surface reduction.

Sessions are led by Apple engineers working directly on platform security and security tools.

in-person https://developer.apple.com/events/view/D4MG4S3PJ7/dashboard
online https://developer.apple.com/events/view/TUHA23T82K/dashboard

Hey All, I made a header only C++ library where it's 1 line of code to init, then you can start writing to pixels on the screen.

I call it thirteen.h, as it is inspired by the simplicity of the 13h days.

Examples include a mandelbrot viewer and a playable mine sweeper game.

MIT licensed.

https://github.com/Atrix256/Thirteen