Dive into an in-depth analysis of one of the most advanced iOS malware samples in this 40-minute Black Hat conference talk. Explore the BLASTPASS exploit, a sophisticated NSO spyware that bypassed Apple's BlastDoor security mechanism using malicious PassKit files sent via iMessage. Learn about the September 2023 iOS 16.6.1 update that addressed actively exploited vulnerabilities, and follow the speaker's journey of investigating crashlogs and an iOS backup containing evidence of the attack. Gain insights into the extraction and analysis process of the malicious PassKit file, and understand the implications of this cutting-edge cyber threat. Join Matthias Frielingsdorf, VP of Research at iVerify, as he guides you through the intricacies of this advanced malware sample, offering valuable knowledge for cybersecurity professionals and iOS developers alike.
Overview
Syllabus
You Shall Not PASS - Analysing a NSO iOS Spyware Sample
Taught by
Black Hat