Supports paragraph alignment, and reformat paragraph. Line spacing support for single, 1.5 and double spacing. Line change and saved changes indicator in margin. Support for long lines (up-to 20,000 characters before wrap). Keep informed about the latest Cyber Security News by following us on Google News, Linkedin, Twi t ter, and Facebook. Hence, all iPhone users are urged to update their devices right away. “We urge all at-risk users to consider enabling Lockdown Mode as we believe it blocks this attack”, Citizen Lab said. Lockdown Mode is believed to prevent this specific attack, and Apple’s Security Engineering and Architecture team has verified this. Update NowĮnabling Lockdown Mode is advised for everyone since it blocks this attack. The BLASTPASS disclosure emphasizes the importance of aiding civil society organizations in our nation’s cybersecurity. This most recent discovery reveals once more how extremely sophisticated attacks and mercenary malware target civic society.Īpple’s upgrade will protect devices owned by regular users, businesses, and governments worldwide. Apple released two CVEs (CVE-2023-41064 and CVE-2023-41061) in connection with this exploit chain. PassKit is a framework that enables app developers to integrate Apple Pay.Ĭitizen Lab quickly informed Apple of its findings and helped with their investigation. “The exploit involved PassKit attachments containing malicious images sent from an attacker iMessage account to the victim”, according to the information shared with Cyber Security News. Last week, researchers discovered this zero-click vulnerability being actively utilized to distribute NSO Group’s Pegasus mercenary malware while inspecting the device of a person employed by a Washington DC-based civil society organization with international offices. This exploit chain is referred to as BLASTPASS by Citizen Lab researchers. The researchers reported the vulnerability to Apple, which issued a fix on Thursday to address two zero-day exploits. 
The capabilities of the Pegasus malware allow its operators access to and the ability to perform on any infected Android and iOS devices microphone recording, emails, SMS, location information, network information, browsing history, and many more.Īccording to Citizen Lab, the exploit chain could infect iPhones running the most recent version of iOS (16.6) without the victim’s involvement.
0 kommentar(er)
