Trusted Design

Apple OS X 10.10 Security Disclosure

概要

Overview Affected Software: Mac OS X 10.10 - 10.10.5, iOS 8+ (Continuity feature) Gotham Digital Science has discovered a vulnerability affecting the phone dialing and SMS integration of the Continuity feature set introduced in OS X 10.10 and iOS 8. Prior to the release of OS X 10.11, it was possible for malware or other malicious code executing on an OS X system to initiate phone calls and send SMS messages via a user’s iPhone without the user’s knowledge and without requiring root access, even if the user’s iPhone was locked. CVE-2015-3785 was discovered during independent research conducted by GDS into Continuity. CVE-2015-5897 was discovered during testing of Apple's fix for CVE-2015-3785.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

このPulseに関連する脅威アクター (事実ベース)

APT28

Score: 29.52
Matched TTPs:
  • T1110.001 - Password Guessing
  • T1560 - Archive Collected Data
  • T1583.006 - Web Services
  • T1598 - Phishing for Information
  • T1137.002 - Office Test
  • T1550.001 - Application Access Token
  • T1669 - Wi-Fi Networks
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

APT29

Score: 8.67
Matched TTPs:
  • T1110.001 - Password Guessing
  • T1583.006 - Web Services
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

APT41

Score: 3.29
Matched TTPs:
  • T1069 - Permission Groups Discovery
MITREへのリンク →

Scattered Spider

Score: 6.72
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1598 - Phishing for Information
MITREへのリンク →

TA505

Score: 3.29
Matched TTPs:
  • T1069 - Permission Groups Discovery
MITREへのリンク →

Volt Typhoon

Score: 7.13
Matched TTPs:
  • T1069 - Permission Groups Discovery
  • T1588.006 - Vulnerabilities
MITREへのリンク →

APT3

Score: 3.29
Matched TTPs:
  • T1069 - Permission Groups Discovery
MITREへのリンク →

FIN13

Score: 3.29
Matched TTPs:
  • T1069 - Permission Groups Discovery
MITREへのリンク →

Sandworm Team

Score: 3.84
Matched TTPs:
  • T1588.006 - Vulnerabilities
MITREへのリンク →

Storm-0501

Score: 3.84
Matched TTPs:
  • T1588.006 - Vulnerabilities
MITREへのリンク →

Lazarus Group

Score: 14.88
Matched TTPs:
  • T1560 - Archive Collected Data
  • T1583.006 - Web Services
  • T1027.007 - Dynamic API Resolution
  • T1566.003 - Spearphishing via Service
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

APT32

Score: 4.60
Matched TTPs:
  • T1560 - Archive Collected Data
  • T1583.006 - Web Services
MITREへのリンク →

FIN6

Score: 5.12
Matched TTPs:
  • T1560 - Archive Collected Data
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

HAFNIUM

Score: 6.14
Matched TTPs:
  • T1583.006 - Web Services
  • T1550.001 - Application Access Token
MITREへのリンク →

Contagious Interview

Score: 4.54
Matched TTPs:
  • T1583.006 - Web Services
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Medusa Group

Score: 10.17
Matched TTPs:
  • T1583.006 - Web Services
  • T1529 - System Shutdown/Reboot
  • T1218.014 - MMC
MITREへのリンク →

Mustang Panda

Score: 6.14
Matched TTPs:
  • T1583.006 - Web Services
  • T1027.007 - Dynamic API Resolution
MITREへのリンク →

ZIRCONIUM

Score: 5.45
Matched TTPs:
  • T1583.006 - Web Services
  • T1598 - Phishing for Information
MITREへのリンク →

Kimsuky

Score: 5.45
Matched TTPs:
  • T1583.006 - Web Services
  • T1598 - Phishing for Information
MITREへのリンク →

Magic Hound

Score: 4.54
Matched TTPs:
  • T1583.006 - Web Services
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

OilRig

Score: 7.06
Matched TTPs:
  • T1137.004 - Outlook Home Page
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

Sea Turtle

Score: 4.54
Matched TTPs:
  • T1608.003 - Install Digital Certificate
MITREへのリンク →

Moonstone Sleet

Score: 5.96
Matched TTPs:
  • T1598 - Phishing for Information
  • T1566.003 - Spearphishing via Service
MITREへのリンク →

DarkVishnya

Score: 4.54
Matched TTPs:
  • T1200 - Hardware Additions
MITREへのリンク →

Mustard Tempest

Score: 4.54
Matched TTPs:
  • T1608.006 - SEO Poisoning
MITREへのリンク →

PLATINUM

Score: 4.54
Matched TTPs:
  • T1056.004 - Credential API Hooking
MITREへのリンク →

Velvet Ant

Score: 4.13
Matched TTPs:
  • T1211 - Exploitation for Defense Evasion
MITREへのリンク →

APT38

Score: 3.62
Matched TTPs:
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

APT37

Score: 3.62
Matched TTPs:
  • T1529 - System Shutdown/Reboot
MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.78
Matched TTPs:
  • T1550.001 - Application Access Token
  • T1598 - Phishing for Information
  • T1110.001 - Password Guessing
  • T1211 - Exploitation for Defense Evasion
  • T1669 - Wi-Fi Networks
  • T1137.002 - Office Test
  • T1560 - Archive Collected Data
  • T1583.006 - Web Services
MITREへのリンク →

Related CVEs

Pulse – 脅威アクター グラフ

← Pulse一覧に戻る