Blastpass

Vulnerability updated 7 months ago (2024-05-04T16:45:17.830Z)

Download STIX

Preview STIX

Blastpass is a significant software vulnerability that was revealed in September 2023 by Citizen Lab. The flaw, which resides in Apple's software design and implementation, has been exploited by attackers to infiltrate devices with Pegasus spyware. The exploit is particularly potent as it uses a zero-click mechanism, allowing an attacker to compromise a device without any user interaction. It was found being actively exploited in attacks on iPhones running the latest version of iOS (16.6), even if the device's software was updated. The Blastpass vulnerability was added to the Known Exploited Vulnerabilities Catalog by the US Cybersecurity and Infrastructure Security Agency (CISA). This move highlights the severity and widespread exploitation of the flaw. The individual associated with exploiting this vulnerability is known to use the Apple ID [email protected]. The Blastpass exploit has been linked to multiple cyberattacks over the past several decades, including the infamous Morris worm of 1988, due to its root cause: memory safety vulnerabilities. Anjana Rajan, Assistant National Cyber Director for Technology Security, emphasized the gravity of these memory safety vulnerabilities, citing high-profile cyberattacks like the Slammer worm of 2003, Heartbleed in 2014, Trident in 2016, and the recent Blastpass in 2023. These attacks have resulted in substantial real-world damage to systems that society relies on every day. Therefore, the elimination of memory-safety vulnerabilities is crucial to prevent such cyberattacks in the future.

Description last updated: 2024-05-04T16:08:58.302Z

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Aliases We are not currently tracking any aliases

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Exploit

Ios

Spyware

Vulnerability

Zero Day

Worm

Apple

IpadOS

Imessage

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The Pegasus Malware is associated with Blastpass. Pegasus is a highly controversial and sophisticated malware, developed by Israel's NSO Group, designed to covertly monitor and extract data from iOS and Android smartphones. Once installed, Pegasus can intercept messages, emails, media, and passwords, and track location data, all while evading detec	Unspecified	5

Source Document References

Information about the Blastpass Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
CERT-EU	9 months ago	White House Calls on Software Devs to go 'Memory Safe' for a Secure Future \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #ransomware \| National Cyber Security Consulting
CERT-EU	9 months ago	White House: Use memory-safe programming languages to protect the nation - Help Net Security
CERT-EU	9 months ago	White House to Software Developers: Use Memory Safe Languages
CERT-EU	9 months ago	White House urges software developers to use memory-safe programming languages
InfoSecurity-magazine	9 months ago	White House Urges Tech Industry to Eliminate Memory Safety Vulnerabili
CERT-EU	9 months ago	16 - 19 April : Black Hat Announces Content Lineup for Black Hat Asia 2024 – Global Security Mag Online
CERT-EU	a year ago	Is Pegasus spyware targeting journalists in India?
CERT-EU	a year ago	Pegasus Spyware found on Indian journalists’ phones after Apple alert: Amnesty International
CERT-EU	a year ago	Apple warnings of possible government hacking drew ire of Indian officials \| #hacking \| #cybersecurity \| #infosec \| #comptia \| #pentest \| #hacker \| National Cyber Security Consulting
CERT-EU	a year ago	Jamf Threat Labs: Fake Lockdown Mode proof of concept
CERT-EU	a year ago	Fake Lockdown Mode Exposes iOS Users to Malware Attacks
CERT-EU	a year ago	CVE-2023-42916: Apple Zero-Days Exploited in the Wild
Securityaffairs	a year ago	Zero-days fixed by Apple were used to deliver Pegasus spyware
InfoSecurity-magazine	a year ago	Apple Patches Two Zero-Days Exploited in Pegasus Attacks
CERT-EU	a year ago	Recently patched Apple, Chrome zero-days exploited in spyware attacks
CERT-EU	a year ago	Apple fixes iOS Kernel zero-day vulnerability on older iPhones
Securityaffairs	a year ago	Watch out! CVE-2023-5129 in libwebp library affects millions apps
CERT-EU	a year ago	Critical libwebp Vulnerability Under Active Exploitation - Gets Maximum CVSS Score
CERT-EU	a year ago	Google assigns new maximum rated CVE to libwebp bug exploited in attacks
Malwarebytes	a year ago	Emergency update! Apple patches three zero-days