Blastpass

Vulnerability Profile Updated a month ago
Download STIX
Preview STIX
Blastpass is a significant software vulnerability that was revealed in September 2023 by Citizen Lab. The flaw, which resides in Apple's software design and implementation, has been exploited by attackers to infiltrate devices with Pegasus spyware. The exploit is particularly potent as it uses a zero-click mechanism, allowing an attacker to compromise a device without any user interaction. It was found being actively exploited in attacks on iPhones running the latest version of iOS (16.6), even if the device's software was updated. The Blastpass vulnerability was added to the Known Exploited Vulnerabilities Catalog by the US Cybersecurity and Infrastructure Security Agency (CISA). This move highlights the severity and widespread exploitation of the flaw. The individual associated with exploiting this vulnerability is known to use the Apple ID [email protected]. The Blastpass exploit has been linked to multiple cyberattacks over the past several decades, including the infamous Morris worm of 1988, due to its root cause: memory safety vulnerabilities. Anjana Rajan, Assistant National Cyber Director for Technology Security, emphasized the gravity of these memory safety vulnerabilities, citing high-profile cyberattacks like the Slammer worm of 2003, Heartbleed in 2014, Trident in 2016, and the recent Blastpass in 2023. These attacks have resulted in substantial real-world damage to systems that society relies on every day. Therefore, the elimination of memory-safety vulnerabilities is crucial to prevent such cyberattacks in the future.
What's your take? (Question 1 of 5)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at.
IDVotesProfile Description
CVE-2023-41064
1
CVE-2023-41064 is a software vulnerability, specifically a buffer overflow issue found in the iOS ImageIO component. This flaw was discovered and reported by researchers at Citizen Lab in early September. It was being actively exploited as part of an exploit chain, along with another vulnerability (
CVE-2023-41061
1
CVE-2023-41061 is a significant software vulnerability that was discovered in Apple's Wallet frameworks. This flaw allows for remote code execution, making it possible for malicious actors to execute arbitrary code on vulnerable devices through the manipulation of a "validation issue". The discovery
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Exploit
Ios
Spyware
Zero Day
Vulnerability
Worm
Imessage
Apple
IpadOS
Traversal
Israeli
Known Exploi...
Palestine
Chrome
Cybercrime
NSO Group
Google
Malware
Linux
Associated Malware
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
PegasusUnspecified
5
Pegasus is a type of malware, or malicious software, created by the Israeli company NSO Group. This harmful program is designed to infiltrate devices without the user's knowledge and can steal personal information, disrupt operations, or hold data for ransom. Pegasus has been known to exploit zero-d
Associated Threat Actors
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
No associations to display
Associated Vulnerabilities
To see the evidence that has resulted in this association, create a free account
IDTypeVotesProfile Description
CVE-2023-4863Unspecified
1
CVE-2023-4863 is a critical vulnerability that has been identified in various major software applications, including Microsoft Windows and Server, Microsoft Edge, Microsoft Office, Word and 365 Apps, Google Chrome, Mozilla Firefox and Thunderbird, and the libwebp library used for handling WebP bitma
Source Document References
Information about the Blastpass Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
SourceCreatedAtTitle
CERT-EU
9 months ago
Apple patches two zero-day flaws abused to install the Pegasus spyware
Securityaffairs
9 months ago
CISA adds recently discovered Apple zero-days to Known Exploited Vulnerabilities Catalog
CERT-EU
9 months ago
Update NOW! Pegasus Spyware Exploit Found in iPhones Running Latest iOS
Securityaffairs
9 months ago
Zero-days fixed by Apple were used to deliver Pegasus spyware
CERT-EU
6 months ago
Fake Lockdown Mode Exposes iOS Users to Malware Attacks
CERT-EU
9 months ago
BLASTPASS: Government agencies told to secure iPhones against spyware attacks
CERT-EU
9 months ago
Zero-Click iPhone Exploit Drops Spyware on Exiled Russian Journalist
CERT-EU
9 months ago
Apple zero-click iMessage exploit used to infect iPhones with spyware
InfoSecurity-magazine
9 months ago
Apple Patches Two Zero-Days Exploited in Pegasus Attacks
CERT-EU
9 months ago
BLASTPASS: NSO Group iPhone Zero-Click, Zero-Day Exploit Captured in the Wild - The Citizen Lab
CERT-EU
9 months ago
Mozilla patches Firefox, Thunderbird against zero-day exploited in attacks
CERT-EU
8 months ago
Google patches zero-day exploited by commercial spyware vendor | TechCrunch
CERT-EU
6 months ago
Apple warnings of possible government hacking drew ire of Indian officials | #hacking | #cybersecurity | #infosec | #comptia | #pentest | #hacker | National Cyber Security Consulting
CERT-EU
9 months ago
New NSO Group iPhone Exploit Bypasses Latest iOS to Hack Devices
CERT-EU
6 months ago
Jamf Threat Labs: Fake Lockdown Mode proof of concept
CERT-EU
9 months ago
Cyber Security Week in Review: September 8, 2023
CERT-EU
9 months ago
Patch iPhones against Pegasus, CISA warns
CERT-EU
4 months ago
White House to Software Developers: Use Memory Safe Languages
CERT-EU
9 months ago
‘BLASTPASS’ iPhone Exploit — Apple Asleep at the Switch
CERT-EU
9 months ago
Apple Discloses 2 Zero-Day Flaws Exploited to Hack iPhones & Mac