
Trenchant, Peter Williams, and the proliferation of a Shadow Brokers-level iOS exploit framework
From Three Buddy Problem by Security Conversations
March 6, 2026 · 1h 60m
About this episode
The episode discusses the implications of the Coruna iOS exploit kit and its connections to cybercriminal activities and surveillance technologies.
( Presented by Thinkst Canary : Most Companies find out way too late that they’ve been breached. Thinkst Canary changes this. Deploy Canaries and Canarytokens in minutes and then forget about them. Attackers tip their hand by touching ’em giving you the one alert, when it matters. With zero admin overhead and almost no false-positives, Canaries are deployed (and loved) on all 7 continents. ) Three Buddy Problem - Episode 88 : We unpack the fallout from public documentation of the Coruna iOS exploit kit, the likely connection to the Peter Williams/Trenchant exploit sale to Russians, how it slipped from government hands into criminal use, and the widening use of zero-days by surveillance vendors and cybercriminals. Plus, fresh signs of cyber-warfare activity tied to Iran and Israel, the FBI’s disclosure of a breach affecting internal surveillance systems, and the latest debate over AI, security tooling, and Anthropic’s public stumbles. Cast: Juan Andres Guerrero-Saade , Ryan Naraine and Costin Raiu . Links: Transcript (raw, AI-generated) Thinkst Canary (how it works) Coruna: The Mysterious Journey of a Powerful iOS Exploit Kit iVerify Details First Known Mass iOS Attack Matthias…
People in this episode
Hosts: Juan Andres Guerrero-Saade, Ryan Naraine, Costin Raiu
Topics covered
- iOS exploit frameworks
- cybersecurity
- zero-day vulnerabilities
- cyber-warfare
- surveillance technology
- FBI breaches
- AI in security
Keywords
- iOS exploit
- cybersecurity
- zero-day
- Thinkst Canary
- FBI breach
- Coruna
- Peter Williams
- cyber-warfare
- AI security
Sponsors
Thinkst Canary
Mentioned in this episode
Organizations: FBI, Kaspersky, Coruna
Places: Iran, Israel
More episodes of Three Buddy Problem
- Mythos, Fable, and Anthropic's Big Trust Problem · June 12, 2026 · 1h 59m
- Fast16, Fanny, and Stuxnet: Cyber Paleontology Redux · June 5, 2026 · 2h 24m
- Microsoft Threatens Vuln Researchers; Shadow Brokers Revisited · May 30, 2026 · 1h 60m
- Aaron Portnoy on Pwn2Own, the End of Easy Bugs, and AI-Fueled Offense · May 27, 2026 · 40 min
- Perri Adams on Proof Engines, LLMs, and the New Era of Verifiable Code · May 26, 2026 · 40 min
- Find 50,000 Bugs, Fix Zero: Gabriel Bernadett-Shapiro on the AI Vuln Trap · May 26, 2026 · 50 min
Explore listener stats, chart rankings, contacts and more on the Three Buddy Problem podcast page.