Will the new 'BlastDoor' security feature be able to fight iMessage hacks?

We know using 'iMessages' is the safest and probably the only way to keep our conversations private on an iPhone. Well, it turns out that isn't the case always. Hackers have been looking for ways to peep into iMessages for long. And the presence of 'Interaction-less bugs' in the Apple's iMessage Client, encourages them even more.
While Apple had released patches for the bug, another roadblock comes in the form of an additional security feature named BlastDoor.

Why was BlastDoor required?

According to researchers, Apple has added the BlastDoor security feature across its range of operating systems to counter hacking attempts into Apple devices that use iMessages.A study by reuters shows that UAE exploited the bugs in the iMessage client to spy on the iPhones of big diplomats, forgein leaders and activists in 2016 and 2017. A team of the US government intelligence worked for the UAE to help them keep an eye on the rivals. They used a spying tool called 'Karma' that exploited a flaw in the iMessage system. This tool allowed them to obtain photos, emails, texts, location, passwords, and more without having the end-user to even click on anything. The use of a similar tool to target journalists at Al Jazeera was reported last year, despite the claims that security updates have deemed 'Karma' less effective.
Apple's BlastDoor security feature comes during the time when there is a strong need of averting such attacks

How does Blastdoor help achieve information security?

BlastDoor remains invisible to users. This security feature is an integral part of iOS14-Apple's latest version of its Operating System, and was discovered by SamuelGrob of Google's Project Zero. Although all apps on iOS work in sandbox mode by default, BlastDoor acts like an extra layer of protection to it.
The basic function of BlastDoor is to scan incoming messages, process them inside a secure and isolated environment so that any embedded malicious code cannot interact with the rest of the system.

The final word

Message has been the target of several hackers over recent times. Moreover, security researchers had criticized Apple's incompetence in handling data threats from interaction-less threats. But with the integration of the new 'BlastDoor' security feature, we can say Apple has finally decided to act upon the feedback from its users

Search

Recent News

Blog Images

Hacker Forums Claim Of A Zero-Day Exploit For Windows LPE

Blog Images

Elimination Of Offlrouter Malware Discovery In Ukraine For Nearly A Decade

Blog Images

Usage of Lua Bytecode By A Novel Redline Stealer Version To Ensure Confidentiality

Blog Images

Master Password Hacking And Account Hijacking By Introducing LastPass Employee

Blog Images

Cisco Displays AI-Powered Automated Vulnerability Hypershield

Blog Images

Customization Of LockBit 3.0 Ransomware By Attackers To Hack Orgs Globally

Blog Images

Pupy RAT Used by Attackers To Hack Linux Systems

Blog Images

Palo Alto Networks Firewall Vulnerabilities Encourage Hackers To Interrupt Systems

Blog Images

Escalation Of Microsoft Email Breach By Russian-Backed Hacker Group

Blog Images

Attack Of Exotic Visit Spyware Campaign On Indian And Pakistani Android Users

Blog Images

Major Adobe Security Flaws Allow Hackers To Launch Arbitrary Code Remotely

Blog Images

Provision Of New Automation Assistance For AI Safety And Governance By Cypago

Blog Images

Discovery Of LG Smart TV Flaws Empowering Restricted Access To Devices

Blog Images

French Football Club PSG Ticketing System Hacked In Cyber Attack

Blog Images

Vulnerability Of Multitude Of CISCO Small Business Routers To XSS Attacks

Blog Images

Enormous boAt Data Breach: Personal Data of 7.5 Million Customers Compromised

Blog Images

CoralRaider Hackers Grab Financial Information, Social Media Passwords, And Account Credentials

Blog Images

JsOutProx Malware Manipulation of GitLab to Target Financial Services Organizations

Blog Images

Hackers AI Package Hallucination Technique To Abuse ChatGPT, Gemini & To Spread Malware

Blog Images

D-Link NAS Command Injection Vulnerability Influence On 92k Devices

Blog Images

Removal Of Billions Of Browsing Records In incognito Mode By Google For Lawsuit Settlement

Blog Images

Massive Phishing Campaign For Deploying Venom RAT In Latin America Sectors

Blog Images

Launch of 20,000 Phishing Domains By Phishing-as-a-Service Platform To Attack 100+ Nations

Blog Images

Octopus Server Vulnerability Enable Attackers Strengthen Privilege

Blog Images

Upstream Xz/Liblzma Backdoor’s Allowance To Attackers To Knock Out SSH Servers

Blog Images

Linux Servers Targeted By DinodasRAT Linux Malware Attack To Acquire Backdoor Access

Blog Images

Hackers Attack on macOS Users Using Malicious Ads Increasing Stealer Malware

Blog Images

AT&T Data Breach: Leakage of 73 Million of Customers Data in Dark Web

Blog Images

6,000 ASUS Routers Hacked By The Moon Malware In 72 hours To Use For Proxy

Blog Images

Wireshark 4.2.4 Released: Whats New?!

Blog Images

Data Leaked from Shopify Plugins nearly 2k stores

Blog Images

Hackers Are Using SQL Injection Vulnerabilities to Take Down Servers, According to CISA & FBI

Blog Images

7 Chinese Govt Cyberpunks Accused for 14-year Hack Campaign

Blog Images

Rank Math SEO Plugin Vulnerability Leaves 2+ Million Websites Open to Cyber Attack

Blog Images

Hackers Target Top-gg and Other Companies with a Supply Chain Attack by Hijacking GitHub Accounts

Blog Images

United States Fines a Man with $9.9 Million for Distributing Thousands of Intruding Robocalls

Blog Images

Patch Now for the Two Firefox Zero-Day Exploits at Pwn2Own

Blog Images

Attacking Linux Systems Using x86 Architecture with AcidPour

Blog Images

Amazon Repairs the Serious FlowFixation Flaw in Airflow Service to Stop Session Hijacking

Blog Images

Players of Apex Legends Fear an RCE Vulnerability Following ALGS Hacks

Blog Images

A New Script-Based Attack Using VBScript and PowerShell

Blog Images

Russian Hackers May Have Attacked Ukrainian Telecom Providers Using Up-To-Date AcidPour Malware

Blog Images

Current Windows Server Updates Cause Crashing & Rebooting Domain Controllers

Blog Images

US Sanctions Russians for Cyber Influence Campaign Behind the “Doppelganger”

Blog Images

New Malware Variant Surfaces for BunnyLoader Featuring Modular Attack Functionalities

Blog Images

Beware of This Free Wedding Invite WhatsApp Scam That Steals Personal Information

Blog Images

Hackers Attacking Cyberspace with Weaponized SVG Files

Blog Images

Attackers Using CryptoWire Ransomware Abuse Scheduled Tasks to Continue

Blog Images

WordPress Administrators Requested Removal of miniOrange Plugins Owing to Serious Error

Blog Images

Malware Has Infected GitHub, Threatening 100,000+ Projects

Blog Images

APT28 Hacker Group Attacking Europe, Americas, and Asia In Phishing Campaigns

Blog Images

42 Months Imprisonment Of Dark Web Market Admin For Selling Login Credentials

Blog Images

Emphasization of Trojan ads on Chinese users via misleading Notepad++ and VNote installers

Blog Images

Magnet-Goblin Hackers Targeted Public Services Using One-Day Exploits

Blog Images

Microsoft Fixes 61 Vulnerabilities in March Updates, Including Critical Hyper-V Flaws

Blog Images

200,000+ Websites are at Risk of XSS Attacks Due to a WordPress Plugin Flaw

Blog Images

Microsoft Announces That Windows 10 21H2 Support Will End in June

Blog Images

Researchers Hacked Google AI: Earned $50,000 Bounty

Blog Images

Broadcom Merges Carbon Black with Symabtec Focusing Business Security

Blog Images

New DoNex Ransomware Observed in the World Targeting Enterprises

Blog Images

Cisco Releases Fix for Severe VPN Hijacking Vulnerability in Secure Client

Blog Images

Hacker Group Magnet Goblin is Using One-Day Exploits to Install Nerbian RAT

Blog Images

MITRE Releases Aviation Risk Identification & Assessment Software

Blog Images

Microsoft Verifies That Russian Hackers Taken Some Customer Secrets and Source Code