Security News > 2021 > April > Apple Patches Zero-Day MacOS Bug That Can Bypass Anti-Malware Defenses
Apple patched a zero-day vulnerability in its MacOS that can bypass critical anti-malware capabilities and which a variant of the notorious Mac threat Shlayer adware dropper already has been exploiting for several months.
Security researcher Cedric Owens first discovered the vulnerability, tracked as CVE-2021-30657 and patched in macOS 11.3, an update dropped by Apple on Monday.
The vulnerability is particularly perilous to macOS users because it allows an attacker to very easily craft a macOS payload that goes unchecked by the strict security features built into the OS specifically to keep malware out.
"This bug trivially bypasses many core Apple security mechanisms, leaving Mac users at grave risk," warned Patrick Wardle, an Apple security expert who runs the Objective-See Mac security tool site, in a blog post Monday.
Owens said he tested his exploit for the bug successfully on macOS Catalina 10.15-specifically on 10.15.7-and on versions of macOS Big Sur before Big Sur 11.3, submitting a report to Apple about the vulnerability on March 25.
The three features that the flaw could bypass actually show a steady progression of macOS security, with the company reinforcing each feature to make the OS inherently less penetrable, Wardle explained.
News URL
https://threatpost.com/apple-patches-macos-bug-bypass-defenses/165611/
Related news
- Apple fixes 2 zero-days exploited to breach macOS systems (CVE-2024-44309, CVE-2024-44308) (source)
- North Korean Hackers Target Crypto Firms with Hidden Risk Malware on macOS (source)
- North Korean hackers use new macOS malware against crypto firms (source)
- North Korean Hackers Target macOS Using Flutter-Embedded Malware (source)
- North Korean hackers create Flutter apps to bypass macOS security (source)
- New RustyAttr Malware Targets macOS Through Extended Attribute Abuse (source)
- Botnet exploits GeoVision zero-day to install Mirai malware (source)
- Apple fixes two zero-days used in attacks on Intel-based Macs (source)
- Apple Releases Urgent Updates to Patch Actively Exploited Zero-Day Vulnerabilities (source)
- Apple Patches Two Zero-Day Attack Vectors (source)
Related Vulnerability
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-09-08 | CVE-2021-30657 | Unspecified vulnerability in Apple mac OS X and Macos A logic issue was addressed with improved state management. | 5.5 |