Budapest Post

Cum Deo pro Patria et Libertate
Budapest, Europe and world news

iMessage Security BlastDoor

iMessage just got an amazing new feature you didn’t even notice

Apple quietly added a new iMessage security feature in iOS 14 called BlastDoor. BlastDoor is a new sandbox inside iMessage that receives and sanitizes all iMessage content before it’s shown to the user. The security feature will prevent attacks via iMessage that might include malicious code for spying on iPhones.

One of the most important apps on any phone, regardless of model or operating system, is the messaging app. The chances are most people use a collection of texting apps to keep in touch with friends and family. These apps have grown to be highly sophisticated over the years, offering a collection of advanced features to improve the chat experience.

Whether it’s iMessage on an iPhone, Google Messages on Android, or WhatsApp, Signal, Telegram, and many others on both platforms, these apps offer essentially the same features. Many protect chats with end-to-end encryption, and most of them support rich texting features, file-sharing, emojis, voice messaging, voice calling, and integration with many other apps.

But because texting is so popular on smartphones, it’s also a great gateway for hackers who come up with all sorts of malicious attacks that can spread via chat apps. And Apple has been quietly tackling that very problem, a new report shows. The company added an amazing new feature to iMessage in iOS 14 and iPadOS 14, the kind that we’ll never notice. It’s called BlasstDoor, an apt name for what the feature is supposed to do.

When Tony Stark asks his AI Friday to activate the “Armed Door” protocol in Endgame, a shield of armor envelops the Avengers headquarters. That’s because they’re about to attempt something never done before, which could lead to a huge wave of destruction. There’s no guarantee that the armor will actually hold back a potential blast, but Stark is trying it nonetheless. Marvel fans will surely remember the scene, while others won’t know what any of this means.

The gist with BlastDoor is similar. Everything coming in via iMessage goes through a secure location meant to contain threats that hackers might include in messages. Highly sophisticated information bombs can allow hackers to attack unsuspecting iPhone users, but BlastDoor will now stop all of that. The new security feature is amazing, and it’s something other operating systems and chat apps will undoubtedly copy. After all, hackers target all devices and programs, not just Apple’s.

As to why Apple never mentioned anything about BlastDoor during WWDC 2020 when the first final version of iOS 14 shipped, that’s understandable. This is Apple’s new move in an ongoing security battle with attackers. There’s no point showing your hand when it comes to BlastDoor. It’s not a feature that device owners will actively use or that iOS developers needed to be aware of.

It’s all supposed to work passively in the background, keeping everybody safe. If security experts like the people working over at Google Zero Lab discover it, that’s something else — and hackers could also find it once they realize their weaponized messages aren’t delivering the desired effect.

First picked up by ZDNet, the BlastDoor feature was indeed discovered by a Googler from Project Zero.

Last year, a report showed that hackers targeted journalists via iMessage code that enabled spying without the recipient having to do anything. But the issue was fixed in iOS 14, so Google researcher Samuel Groß set out to discover how Apple mitigated the problem. That’s how he found BlastDoor, a feature that works behind the scenes with iMessage content.

It’s a “sandbox” type of functionality, similar to other sandboxes in iOS. BlastDoor will unpack and process the content of all incoming messages in an isolated environment so that a malicious payload cannot attack the operating system. In other words, every attachment and all code coming through iMessage, whether it’s the actual text, links, or files, will be sanitized inside that closed environment.

If you still haven’t upgraded to iOS 14, BlastDoor is an excellent reason to do it, especially if you’re the kind of iPhone user who might be someone’s target.

“Overall, these changes are probably very close to the best that could’ve been done given the need for backwards compatibility, and they should have a significant impact on the security of iMessage and the platform as a whole,” the Googler wrote. “It’s great to see Apple putting aside the resources for these kinds of large refactorings to improve end users’ security.

Furthermore, these changes also highlight the value of offensive security work: not just single bugs were fixed, but instead structural improvements were made based on insights gained from exploit development work.”

Groß’s blog post detailing the new iMessage security feature is available at this link.

AI Disclaimer: An advanced artificial intelligence (AI) system generated the content of this page on its own. This innovative technology conducts extensive research from a variety of reliable sources, performs rigorous fact-checking and verification, cleans up and balances biased or manipulated content, and presents a minimal factual summary that is just enough yet essential for you to function as an informed and educated citizen. Please keep in mind, however, that this system is an evolving technology, and as a result, the article may contain accidental inaccuracies or errors. We urge you to help us improve our site by reporting any inaccuracies you find using the "Contact Us" link at the bottom of this page. Your helpful feedback helps us improve our system and deliver more precise content. When you find an article of interest here, please look for the full and extensive coverage of this topic in traditional news sources, as they are written by professional journalists that we try to support, not replace. We appreciate your understanding and assistance.
Newsletter

Related Articles

0:00
0:00
Close
Emails Leaked: How Passenger Luggage Became a Side Income for Airport Workers
Polish MEP: “Dear Leftists - China is laughing at you, Russia is laughing, India is laughing”
Western Europe Records Hottest June on Record
BRICS Expands Membership with Indonesia and Ten New Partner Countries
Elon Musk Founds a Party Following a Poll on X: "You Wanted It – You Got It!"
China’s Central Bank Consults European Peers on Low-Rate Strategies
France Requests Airlines to Cut Flights at Paris Airports Amid Planned Air Traffic Controller Strike
Poland Implements Border Checks Amid Growing Migration Tensions
Emirates Airline Expands Market Share with New $20 Million Campaign
Amazon Reaches Milestone with Deployment of One Millionth Robot
Yulia Putintseva Calls for Spectator Ejection at Wimbledon Over Safety Concerns
House Oversight Committee Subpoenas Former Jill Biden Aide Amid Investigation into Alleged Concealment of President Biden's Cognitive Health
Amazon Reaches Major Automation Milestone with Over One Million Robots
Extreme Heat Wave Sweeps Across Europe, Hitting Record Temperatures
Meta Announces Formation of Ambitious AI Unit, Meta Superintelligence Labs
Robots Compete in Football Tournament in China Amid Injuries
China Unveils Miniature Insect-Like Surveillance Drone
Marc Marquez Claims Victory at Dutch Grand Prix Amidst Family Misfortune
Germany Votes to Suspend Family Reunification for Asylum Seekers
Budapest Pride Parade Draws 200,000 Participants Amid Government Ban
Southern Europe Experiences Extreme Heat
Xiaomi's YU7 SUV Launch Garners Record Pre-Orders Amid Market Challenges
Jeff Bezos and Lauren Sanchez's Lavish Wedding in Venice
Russia Launches Largest Air Assault on Ukraine Since Invasion
Massive Anti-Government Protests Erupt in Belgrade
Iran Executes Alleged Israeli Spies and Arrests Hundreds Amid Post-War Crackdown
Hungary's Prime Minister Criticizes NATO's Role in Ukraine
EU TO HUNGARY: LET THEM PRIDE OR PREP FOR SHADE. ORBÁN TO EU: STAY IN YOUR LANE AND FIX YOUR OWN MESS.
Hungarian Scientist to Conduct 30 Research Experiments on the International Space Station
NATO Members Agree to 5% Defense Spending Target by 2035
NATO Leaders Endorse Plan for Increased Defence Spending
U.S. Crude Oil Prices Drop Below $65 Amid Market Volatility
International Astronaut Team Launched to Space Station
Macron and Merz: Europe must arm itself in an unstable world
Germany and Italy Under Pressure to Repatriate $245bn of Gold from US Vaults
Iran Intensifies Crackdown on Alleged Mossad Operatives After Sabotage Claims
Trump Praises Iran’s ‘Very Weak’ Response After U.S. Strikes and Presses Israel to Pursue Peace
Oil Prices Set to Surge After US Strikes Iran
BA and Singapore Airlines Cancel Dubai Flights Amid Middle East Tensions
Trump Faces Backlash from MAGA Base Over Iran Strikes
Meta Bets $14 B on Alexandr Wang to Drive AI Ambitions
FedEx Founder Fred Smith, ‘Heart and Soul’ of the Company, Dies at 80
Chinese Factories Shift Away from U.S. Amid Trump‑Era Tariffs
Pimco Seizes Opportunity in Japan’s Dislocated Bond Market
Labubu Doll Drives Pop Mart to Status as China’s Most Valuable Toy Maker
Global Coal Demand Defies Paris Accord Goals
United States Conducts Precision Strikes on Iran’s Nuclear Sites
US strikes Iran nuclear sites, Trump says
Telegram Founder: I Will Leave My Fortune to Over 100 of My Children
16 Billion Login Credentials Leaked in Unprecedented Cybersecurity Breach
×