- Initial Investigation: Google received kernel panic logs from Amnesty International that indicated an in-the-wild (ITW) exploit targeting a Qualcomm driver. - Kernel Panic Logs Analysis: Without the exploit sample, Project Zero/TAG relied on kernel panic logs to identify potential vulnerabilities. - Vulnerability Discovery: Four of the panic logs contained useful information that led to the discovery of six vulnerabilities in the Qualcomm driver. - Exploit Strategy Hypothesis: One of the vulnerabilities was identified as likely exploited in the ITW scenario based on the crash logs. - Details of the Bugs: The blog post describes each of the six vulnerabilities discovered, providing technical details and code snippets for each. - Collaboration with Threat Analysis Group: Google's Threat Analysis Group (TAG) collaborated with Amnesty International to provide the artifacts and assist in the technical analysis. - Reverse-Engineering Challenge: Determining the vulnerability exploited without the exploit sample required a thorough analysis of the panic logs. - Limited Information: The lack of an exploit sample made it difficult to precisely determine the vulnerability exploited. - Bug Hunt Duration: The investigation and discovery of the vulnerabilities spanned over two and a half months. - Amnesty International's Report: Amnesty International published a report on the exploits used against their target.