Pangu Team Is Back (Sort Of), Announces ‘Janus’ Mobile Threat Intelligence Platform

World famous Pangu Team has made a reappearance of sorts. The team, which has previously been in the spotlight for security research and producing jailbreaks, have used their social network of choice to announce a new mobile threat detection platform called Janus.

The official Pangu Team Twitter account hasn’t exactly been full of activity in recent weeks, months, and even years, in all honesty. The account has amassed a lot of followers based on work carried out in the jailbreak community but hasn’t really had much activity aside from promoting talks at conferences pertaining to Pangu9 back in Q3/Q4 of 2016.

Now, it seems that the team is back with a renewed focus, with the announcement of Janus, a platform which will allow threats to be detected directly within the codebase of native mobile apps:

We are releasing Janus, a mobile threat intelligence platform http://www.appscan.io . Find intro doc at http://doc.appscan.io/en/ . Our team is now conducting security research on mobile apps. If you need security auditing for your apps, please contact us.

It seems that Pangu is looking to stick to what it knows by taking the combined expertise of its team members and building a platform that can assist with auditing mobile applications from a security perspective. Those chosen route to be able to do this is what the team is calling Janus, described as a “mobile threat intelligence platform,” which “monitors distribution channels in long-term, covering dozens of major app stores, accumulated to tens of millions of apps and more than 300 billion broad-spectrum characteristics.”

Using the platform, the team has also used Twitter to reveal that it has “confirmed several iOS apps with more than 100 million users” which are vulnerable to what the team is calling “Zipper Down”. This is the name the team has given to what it’s calling a “programming error” present in various popular apps that introduces potential “severe consequences” such as the ability to overwrite data and the potential for arbitrary code execution from malicious individuals.

More information regarding Janus can be found over at appscan.io, with documentation existing on a more technical and in-depth level at the document portal doc.appscan.io/en/ for the platform.

(ZipperDown exploit being used to hack Weibo app on iOS)

(Source: Twitter [1], [2])

You may also like to check out:

  • PUBG Mobile 0.5.0 Patch Notes Released In Full For English Global Version
  • PUBG Mobile 0.5.0 APK Download, iOS Update Out As Season 2 Begins [English Version]
  • iOS 11.4 Beta 5 Release Notes And Changes: What’s New In This Release?
  • Download iOS 11.4 Beta 5 IPSW Links And OTA Update [Testers Only]
  • Jailbreak iOS 11.3.1 Update: Details On Exploiting iBoot Released Which Could Lead To Untether On Older Firmwares
  • Jailbreak iOS 11.3 / 11.3.1 / 11.2.6 On iPhone And iPad [Status Update]
  • Download iOS 11.3.1 IPSW Links, OTA Update With Fix For Third-Party Screen Repair Issue
You can follow iPhoneFirmware.com on Twitter, add us to your circle on Google+ or like our Facebook page to keep yourself updated on all the latest from Apple and the Web.