Serious MacOS Vulnerability Patched

2021-04-30 12:38

Apple just patched a MacOS vulnerability that bypassed malware checks.

The flaw is akin to a front entrance that's barred and bolted effectively, but with a cat door at the bottom that you can easily toss a bomb through.

Apple mistakenly assumed that applications will always have certain specific attributes.

Owens discovered that if he made an application that was really just a script-code that tells another program what do rather than doing it itself-and didn't include a standard application metadata file called "Info.plist," he could silently run the app on any Mac.

The operating system wouldn't even give its most basic prompt: "This is an application downloaded from the Internet. Are you sure you want to open it?".

News URL

https://www.schneier.com/blog/archives/2021/04/serous-macos-vulnerability-patched.html

#macos #vulnerability

News URL

Related news