SlowMist Chief Information Security Officer 23pds shared that the MacSync Stealer malicious software active on the macOS platform has evolved significantly, and user assets have been stolen. The forwarded article mentioned that from the early reliance on low-threshold inducement methods such as "drag to end point" and "ClickFix", it was upgraded to code signing and notarized by Apple...
慢雾首席信息安全官 23pds 发文分享称,活跃于 macOS 平台的 MacSync Stealer 恶意软件已出现明显演进,已有用户资产被盗。其转发的文章提到,从早期依赖「拖拽到终端」「ClickFix」等低门槛诱导手法,升级为代码签名并通过苹果公证...
On January 15, Microsoft Threat Intelligence discovered a new macOS vulnerability, CVE-2024-44243, which could allow attackers to bypass Apple System Integrity Protection (SIP) in macOS by loading third-party kernel extensions. SIP is a security technique that restricts the execution of actions that could compromise the integrity of the system; as such, SIP bypass affects the overall security of the operating system. Bypassing SIP can lead to serious consequences, such as increased success by at...
1 月 15 日消息,Microsoft Threat Intelligence 发现了一个新的 macOS 漏洞 CVE-2024-44243,该漏洞可能允许攻击者通过加载第三方内核扩展来绕过 macOS 中的 Apple 系统完整性保护(SIP)。SIP 是一种安全技术,可限制可能损害系统完整性的操作的执行;因此,SIP 绕过会影响操作系统的整体安全性。 绕过 SIP 可能会导致严重后果,例如增加攻击者和恶意软件作者成功...
CertiK称,安全研究团队发现macOS Sonoma 14.5中存在漏洞,该漏洞可允许应用利用内核权限执行任意代码。苹果已公布该漏洞,用户需更新至最新版本的macOS。