• About
  • Advertise
  • Contact
Wednesday, July 6, 2022
  • Login
WRITE FOR US
Economy.pk
  • Economy
  • Politics
  • Technology
  • Education
  • Life & Style
  • Health
  • World
No Result
View All Result
Economy.pk
  • Economy
  • Politics
  • Technology
  • Education
  • Life & Style
  • Health
  • World
Economy.pk
Home Business

Mac’OS software bug let malware through security defenses

bySidra Butt
April 27, 2021
in Business, Economy, Education, Mobiles, New, Social Media, Technology, World
Reading Time: 2 mins read
0
MacOS
378
SHARES
910
VIEWS
Share on FacebookShare on Twitter

Apple has spent years reinforcing macOS with new security features to make it tougher for malware to break in. But a newly discovered vulnerability broke through most of macOS’ newer security protections with a double-click of a malicious app, a feat not meant to be allowed under Apple’s watch.

Worse, evidence shows a notorious family of Mac malware had been exploiting this vulnerability for months before it was subsequently patched by Apple this week.

RelatedPosts

British High Commissioner Christian Turner meets Imran Khan

Govt asked to shun cars over 1000cc

ML-1 cost increases to $9.8 billion

Over the years, Macs have adapted to catch the most common types of malware by putting technical obstacles in their way. Indeed, macOS flags potentially malicious apps masquerading as documents that have been downloaded from the internet. And if macOS hasn’t reviewed the app — a process Apple calls notarization — or if it doesn’t recognize its developer, the app won’t be allowed to run without user intervention.

But security researcher Cedric Owens said the bug he found in mid-March bypasses those checks and allows a malicious app to run.

Owens told TechCrunch that the bug allowed him to build a potentially malicious app to look like a harmless document, which when opened bypasses macOS’ built-in defenses when opened.

“All the user would need to do is a double click — and no macOS prompts or warnings are generated,” he stated. Owens built a proof-of-concept app disguised as a harmless document that exploits the bug to launch the Calculator app, a way of demonstrating that the bug works without dropping malware. But a malicious attacker could exploit this vulnerability to remotely access a user’s sensitive data simply by tricking a victim into opening a spoofed document, he explained.

GIF showing a proof of concept app opening uninhibited on an unpatched macOS computer.

Fearing the potential for attackers to abuse this vulnerability, Owens reported the bug to Apple.

Apple told TechCrunch it fixed the bug in macOS 11.3. Apple also patched earlier macOS versions to prevent abuse, and pushed out updated rules to XProtect, macOS’ in-built anti-malware engine, to block malware from exploiting the vulnerability.

Tags: AppleMacMacOSMalware
Sidra Butt

Sidra Butt

Related Posts

British High Commissioner Christian Turner meets Imran Khan

British High Commissioner Christian Turner meets Imran Khan

The Chairman of the Pakistan Tehreek-e-Insaf, Imran Khan, met with the British High Commissioner, Christian Turner, on Tuesday to discuss...

Govt asked to shun cars over 1000cc

Govt asked to shun cars over 1000cc

As the country faces serious economic and energy crises, traders have called upon the government to ban the import and...

Next Post
Tesla

Tesla views bitcoin as an important financial tool

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Recommended

British High Commissioner Christian Turner meets Imran Khan

British High Commissioner Christian Turner meets Imran Khan

Govt asked to shun cars over 1000cc

Govt asked to shun cars over 1000cc

ML-1 cost soars to $9.8b

ML-1 cost increases to $9.8 billion

PKR depreciates by Rs2.38 in interbank

PKR depreciates by Rs2.38 in interbank

Pakistan’s microfinance institution launches term finance certificates of $4.9 million

Pakistan’s microfinance institution launches term finance certificates of $4.9 million

Indian Airline plane makes ‘emergency landing’ in Karachi

Indian Airline plane makes ‘emergency landing’ in Karachi

Connect with us

Twitter

Economy.pk

Economy.pk touches diverse topics with a lighter note and is geared toward audiences with various interests and all ages. Come and explore Economy.pk. Ample details and analysis are provided in extraordinarily readable manner making them compelling and interesting at the same time.

Category

  • World
  • Politics
  • Business
  • Technology
  • Education
  • Health
  • Life & Style
  • Opinions

Social Media

  • Facebook
  • Instagram
  • Twitter
  • Linkedin

Sitelinks

  • Sitemap

Download our APP

download on android app download on apple app
  • About
  • Advertise
  • Contact

© 2022 All Rights Reserved Economy.pk | Designed & Developed by Digital Otters

  • LATEST
  • World
    • Europe
    • Americas
    • Asia
    • Oceania
    • Africa
    • Canada
    • Middle East
  • Finance
  • Politics
  • Business
    • Economy
    • Finance
    • Entrepreneurship
    • Real Estate
  • Technology
    • Cyber Security
    • Mobiles
    • Social Media
  • Education
  • Sports
  • Life & Style
    • Personalities
    • Art
    • Culture
    • History
    • Entertainment
    • Fashion
    • Food
    • Health
      • Environment
      • Fitness
  • Sponsored

© 2022 All Rights Reserved Economy.pk | Designed & Developed by Digital Otters

No Result
View All Result

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In