Apple has added several anti-exploit mitigations, including a sandboxed “BlastDoor” service, into its flagship mobile operating systems, iOS 14 and iPadOS 14, in what appears to be a specific response to zero-click iMessage attacks observed in the wild.
Ryan Naraine for SecurityWeek:
The new mitigations were discovered by Samuel Groß, a Google Project Zero security researcher who specializes in remote iPhone exploitation and zero-click attacks against mobile messaging systems.
Apple did not document the changes but Groß said he fiddled around with the newest iOS 14 and found that Apple shipped a “significant refactoring of iMessage processing” that severely cripples the usual ways exploits are chained together for zero-click attacks.
With iOS 14, Groß discovered that Apple shipped a significant refactoring of iMessage processing, and made all four parts of an attack much harder to succeed.
The first big addition is a new, tightly sandboxed “BlastDoor” service that is now responsible for the parsing of untrusted data in iMessages. Separately, Apple added logic into iOS 14 to specifically detect [shared cache region] attacks and new techniques to limit an attacker’s ability to retry exploits or brute force Address Space Layout Randomization (ASLR).
MacDailyNews Note: Samuel Groß writes for Project Zero, “With iOS 14, Apple shipped a significant refactoring of iMessage processing, and made all four parts of the attack harder… Overall, these changes are probably very close to the best that could’ve been done given the need for backwards compatibility, and they should have a significant impact on the security of iMessage and the platform as a whole. It’s great to see Apple putting aside the resources for these kinds of large refactorings to improve end users’ security. Furthermore, these changes also highlight the value of offensive security work: not just single bugs were fixed, but instead structural improvements were made based on insights gained from exploit development work.”
good to know https://sites.google.com/view/get-pokemon-go-coins/home
“The first big addition is a new, tightly sandboxed “BlastDoor” service that is now responsible for the parsing of untrusted data in iMessages.” If only this were available to Dominion voting machines using Smartmatic tabulating software.
Hmmm. You would think Apple would be all over building voting machines since they are so into privacy and security. Nah. No money in it I suppose.
Hope the hackers don’t build any Dark Troopers. 🙂
Forget “no money” how about if we fix voting we may not like the results? ¯\_(ツ)_/¯
Tru Dat. After all, in the age of BLM, we did elect the man who said President Obama was the FIRST mainstream African American who was articulate, bright and CLEAN, and who raged at Black reporter Errol Barnett “ARE YOU A JUNKIE?”, because if given a million years, Joe’d NEVER say, nor ask those things of WHITE men.
Then again, and as we all know, that’s EXACTLY why democrats chose and voted for Biden.
Brilliant news: Apple is also affixing a “BLASTDOOR” function to Safari so that Don Jingler crapworks of art cannot pollute eyes and the Internet any long. Tim Cook was quoted as saying “If we can shut down Parler, then common sense and sensibility demands we also shut down that Dingler doofus, and we’ve done just that!”