Microsoft researchers help Apple fix a critical MacOS bug

New Delhi: Apple has fixed a security bug in its MacOS software after Microsoft researchers alerted the iPhone maker about the vulnerability that could be used by hackers. Microsoft discovered the vulnerability in MacOS that could allow an attacker to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device. The bug allowed a potential attacker to install a hardware interface that allows them to “overwrite system files, or install persistent, undetectable malware”. “We also found a similar technique that could allow an attacker to elevate their privileges to root an affected device. We shared these findings with Apple through Coordinated Vulnerability Disclosure (CVD) via Microsoft Security Vulnerability Research (MSVR),” Microsoft 365 Defender Research Team said in a statement. Apple issued a fix for this vulnerability, now identified as CVE-2021-30892, in its latest security update. SIP is a security technology in macOS that restricts a root user from performing operations that may compromise system integrity. ” We found that the vulnerability lies in how Apple-signed packages with post-install scripts are installed. A malicious actor could create a specially crafted file that would hijack the installation process,” the Microsoft researchers noted. After bypassing SIP’s restrictions, the attacker… Read full this story

• Apple Fixed Two Actively Exploited Vulnerabilities in macOS 12.3.1 Monterey, But Hasn't Released Updates for Big Sur or Catalina
• Apple releases first macOS 12.4 beta [Update: Public beta]
• Apple releases first macOS 12.4 beta
• How to download and install macOS Monterey 12.3.1 on your Mac
• iPad mini, Apple television with gesture control now in production
• How to download and install tvOS 15.4.1 on your Apple TV
• macOS Monterey 12.3.1 now available with Bluetooth & external display fixes
• Why Apple is now focusing on users, not units in Fiscal 2019
• The birth, life, death, and possible resurrection of the Thunderbolt eGPU in macOS
• Apple Invites Everyone to Help Test MacOS Mojave Ahead of Fall Launch | Digital Trends
• How to install the watchOS 8.6 beta 1 to your Apple Watch
• Apple's guidance correction in China would be great news from Samsung

Microsoft researchers help Apple fix a critical MacOS bug have 324 words, post on ciso.economictimes.indiatimes.com at November 2, 2021. This is cached page on Konitono. If you want remove this page, please contact us.