Trusted Design

Apple OS X 10.10 Security Disclosure

概要

Overview Affected Software: Mac OS X 10.10 - 10.10.5, iOS 8+ (Continuity feature) Gotham Digital Science has discovered a vulnerability affecting the phone dialing and SMS integration of the Continuity feature set introduced in OS X 10.10 and iOS 8. Prior to the release of OS X 10.11, it was possible for malware or other malicious code executing on an OS X system to initiate phone calls and send SMS messages via a user’s iPhone without the user’s knowledge and without requiring root access, even if the user’s iPhone was locked. CVE-2015-3785 was discovered during independent research conducted by GDS into Continuity. CVE-2015-5897 was discovered during testing of Apple's fix for CVE-2015-3785.

Created: 2026-02-23

Indicators

Indicatorsは見つかっていない。

類似Pulses

iOS Trojan "Tiny"” Attacks Jailbroken Devices (score: 0.55)
OS X / Wirelurker (score: 0.54)
XCode Ghost (score: 0.52)
XcodeGhost Modifies Xcode, Infects Apple iOS Apps (score: 0.52)
AceDeceiver: First iOS Trojan Exploiting Apple DRM Design (score: 0.52)

このPulseに関連する脅威アクター (事実ベース)

APT28

Score: 29.52

Matched TTPs:

T1222.002 - Linux and Mac Permissions
T1550 - Use Alternate Authentication Material
T1608.005 - Link Target
T1197 - BITS Jobs
T1588.003 - Code Signing Certificates
T1055.008 - Ptrace System Calls
T1546.007 - Netsh Helper DLL
T1566.003 - Spearphishing via Service

MITREへのリンク →

APT29

Score: 8.67

Matched TTPs:

T1222.002 - Linux and Mac Permissions
T1608.005 - Link Target
T1547.008 - LSASS Driver

MITREへのリンク →

APT41

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

Scattered Spider

Score: 6.72

Matched TTPs:

T1560.003 - Archive via Custom Method
T1197 - BITS Jobs

MITREへのリンク →

TA505

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

Volt Typhoon

Score: 7.13

Matched TTPs:

T1560.003 - Archive via Custom Method
T1686.003 - Windows Host Firewall

MITREへのリンク →

APT3

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

FIN13

Score: 3.29

Matched TTPs:

T1560.003 - Archive via Custom Method

MITREへのリンク →

Sandworm Team

Score: 3.84

Matched TTPs:

T1686.003 - Windows Host Firewall

MITREへのリンク →

Storm-0501

Score: 3.84

Matched TTPs:

T1686.003 - Windows Host Firewall

MITREへのリンク →

Lazarus Group

Score: 14.88

Matched TTPs:

T1550 - Use Alternate Authentication Material
T1608.005 - Link Target
T1055.005 - Thread Local Storage
T1547.008 - LSASS Driver
T1216 - System Script Proxy Execution

MITREへのリンク →

APT32

Score: 4.60

Matched TTPs:

T1550 - Use Alternate Authentication Material
T1608.005 - Link Target

MITREへのリンク →

FIN6

Score: 5.12

Matched TTPs:

T1550 - Use Alternate Authentication Material
T1547.008 - LSASS Driver

MITREへのリンク →

HAFNIUM

Score: 6.14

Matched TTPs:

T1608.005 - Link Target
T1055.008 - Ptrace System Calls

MITREへのリンク →

Contagious Interview

Score: 4.54

Matched TTPs:

T1608.005 - Link Target
T1547.008 - LSASS Driver

MITREへのリンク →

Medusa Group

Score: 10.17

Matched TTPs:

T1608.005 - Link Target
T1216 - System Script Proxy Execution
T1094 - Custom Command and Control Protocol

MITREへのリンク →

Mustang Panda

Score: 6.14

Matched TTPs:

T1608.005 - Link Target
T1055.005 - Thread Local Storage

MITREへのリンク →

ZIRCONIUM

Score: 5.45

Matched TTPs:

T1608.005 - Link Target
T1197 - BITS Jobs

MITREへのリンク →

Kimsuky

Score: 5.45

Matched TTPs:

T1608.005 - Link Target
T1197 - BITS Jobs

MITREへのリンク →

Magic Hound

Score: 4.54

Matched TTPs:

T1608.005 - Link Target
T1547.008 - LSASS Driver

MITREへのリンク →

OilRig

Score: 7.06

Matched TTPs:

T1592.002 - Software
T1547.008 - LSASS Driver

MITREへのリンク →

Sea Turtle

Score: 4.54

Matched TTPs:

T1685 - Disable or Modify Tools

MITREへのリンク →

Moonstone Sleet

Score: 5.96

Matched TTPs:

T1197 - BITS Jobs
T1547.008 - LSASS Driver

MITREへのリンク →

DarkVishnya

Score: 4.54

Matched TTPs:

T1213.003 - Code Repositories

MITREへのリンク →

Mustard Tempest

Score: 4.54

Matched TTPs:

T1543.002 - Systemd Service

MITREへのリンク →

PLATINUM

Score: 4.54

Matched TTPs:

T1686 - Disable or Modify System Firewall

MITREへのリンク →

Velvet Ant

Score: 4.13

Matched TTPs:

T1566.003 - Spearphishing via Service

MITREへのリンク →

APT38

Score: 3.62

Matched TTPs:

T1216 - System Script Proxy Execution

MITREへのリンク →

APT37

Score: 3.62

Matched TTPs:

T1216 - System Script Proxy Execution

MITREへのリンク →

このPulseに関連する脅威アクター (推論ベース)

APT28

Score: 0.78

Matched TTPs:

T1608.005 - Link Target
T1222.002 - Linux and Mac Permissions
T1550 - Use Alternate Authentication Material
T1546.007 - Netsh Helper DLL
T1566.003 - Spearphishing via Service
T1588.003 - Code Signing Certificates
T1197 - BITS Jobs
T1055.008 - Ptrace System Calls

MITREへのリンク →

Related CVEs

Pulse – 脅威アクターグラフ

← Pulse一覧に戻る