comscore Microsoft researchers alert Apple about a security bug in macOS
  • Home
  • News
  • Microsoft researchers help Apple fix a macOS security bug
News

Microsoft researchers help Apple fix a macOS security bug

News

The said bug could allow a potential attacker to install a hardware interface that allows them to "overwrite system files, or install persistent, undetectable malware".

  • Updated: November 2, 2021 6:19 PM IST
macOS-Monterey

Apple has fixed a security bug in its macOS software after Microsoft researchers notified the iPhone maker about the vulnerability that could be used by hackers. The researchers discovered the vulnerability in macOS that could allow an attacker to bypass System Integrity Protection (SIP) in macOS and perform arbitrary operations on a device. Also Read - Apple cuts iPad production to fulfil iPhone 13 demand amid supply chain constraints: Report

macOS, macOS Monterey, macOS Monterey, macOS monterey update, macOS monterey stable update, macOS monterey stable update release date, macOS monterey stable update download, macOS monterey download, how to install macOS Monterey Also Read - Apple Co-founder Steve Wozniak says iPhone 13 is not very different from iPhone 12

The bug allowed a potential attacker to install a hardware interface that allows them to “overwrite system files, or install persistent, undetectable malware”. Also Read - Apple could likely bring its mixed-reality device next year at an unusual price tag

“We also found a similar technique that could allow an attacker to elevate their privileges to root an affected device. We shared these findings with Apple through Coordinated Vulnerability Disclosure (CVD) via Microsoft Security Vulnerability Research (MSVR),” Microsoft 365 Defender Research Team said in a statement.

Apple issued a fix for this vulnerability, now identified as CVE-2021-30892, in its latest security update.

SIP is a security technology in macOS that restricts a root user from performing operations that may compromise system integrity.

” We found that the vulnerability lies in how Apple-signed packages with post-install scripts are installed. A malicious actor could create a specially crafted file that would hijack the installation process,” the Microsoft researchers noted.

After bypassing SIP’s restrictions, the attacker could then install a malicious kernel driver (rootkit), overwrite system files, or install persistent, undetectable malware, among others.

As networks become increasingly heterogeneous, the number of threats that attempt to compromise non-Windows devices also increases.

Microsoft Defender for Endpoint on Mac enables organisations to gain visibility and detect threats on macOS devices, the company said.

“This research underscores the importance of collaboration among security researchers, software vendors, and the larger security community,” Microsoft added.

(With inputs from IANS)

For the latest tech news across the world, latest PC and Mobile games, tips & tricks, top-notch gadget reviews of most exciting releases follow BGR India’s Facebook, Twitter, subscribe our YouTube Channel. Also follow us on  Facebook Messenger for latest updates.
  • Published Date: November 2, 2021 6:18 PM IST
  • Updated Date: November 2, 2021 6:19 PM IST

Trending Today

thumb-img
News
Union Budget 2021 to Twitter accounts banned: Today's top tech news
thumb-img
News
Realme X7 series India launch to Carl Pei's new venture Nothing: Top tech news today
thumb-img
Apps
WhatsApp brings Always Mute group chats to iOS, Android
thumb-img
News
Nokia 5.3 launching in India in August with two more phones

Editor's Pick

Top smart home gadgets that you can buy under Rs 3,000 this Diwali
Photo Gallery
Top smart home gadgets that you can buy under Rs 3,000 this Diwali
Top smart home gadgets under Rs 3,000 to buy this Diwali: Realme Smart Cam 360°, Mi LED smart bulb and more

Photo Gallery

Top smart home gadgets under Rs 3,000 to buy this Diwali: Realme Smart Cam 360°, Mi LED smart bulb and more

Microsoft researchers alert Apple about a security bug in macOS

News

Microsoft researchers alert Apple about a security bug in macOS

Apple decides to cut back on iPad production to allocate components to iPhone 13

News

Apple decides to cut back on iPad production to allocate components to iPhone 13

Amazon satellite set to launch in late 2022, more than 3,000 satellites to be delivered

News

Amazon satellite set to launch in late 2022, more than 3,000 satellites to be delivered

Elon Musk Starlink sets up an Indian subsidiary, plans to apply for a license

Telecom

Elon Musk Starlink sets up an Indian subsidiary, plans to apply for a license

Most Popular

Related Topics

Related Stories

Microsoft researchers alert Apple about a security bug in macOS

News

Microsoft researchers alert Apple about a security bug in macOS
Apple decides to cut back on iPad production to allocate components to iPhone 13

News

Apple decides to cut back on iPad production to allocate components to iPhone 13
iPhone 13 and iPhone 12 do not have many differences: Apple Co-founder Steve Wozniak

News

iPhone 13 and iPhone 12 do not have many differences: Apple Co-founder Steve Wozniak
Apple could likely bring its mixed-reality device next year at an unusual price tag

News

Apple could likely bring its mixed-reality device next year at an unusual price tag
iPhone 13 sells at a crazy discount this Diwali: Grab it for Rs 56,000, know the deal

Deals

iPhone 13 sells at a crazy discount this Diwali: Grab it for Rs 56,000, know the deal

हिंदी समाचार

Google Photos का नया 'More Like This' फीचर कर देगा सर्च आसान, जानें कैसे करेगा काम

Free Fire में कैसे मिलेगी स्पेशल Spikey Spine Gloo Wall skin? जानें तरीका

3 स्टेप्स में 3 महीने के लिए फ्री पाएं Spotify का फ्री प्रीमियम सब्सक्रिप्शन

Free Fire Diwali Pass के साथ प्लेयर्स को मिलेंगे ढेरों स्पेशल इनाम, जानें तरीका

How to Use two WhatsApp Account in One Smartphone: एक स्मार्टफोन पर ऐसे चलाएं दो व्हाट्सऐप, बहुत आसान है तरीका

Latest Videos

Realme Narzo 30 smartphone available with Rs 1,500 off during Amazon sale

News

Realme Narzo 30 smartphone available with Rs 1,500 off during Amazon sale
JioPhone Next First Look, Launched in India

Hands On

JioPhone Next First Look, Launched in India
JioPhone Next First Look: Launched in India | EXCLUSIVE

JioPhone Next First Look: Launched in India | EXCLUSIVE
How to scan Paytm App QR Code sent on WhatsApp without using any other phone

Features

How to scan Paytm App QR Code sent on WhatsApp without using any other phone

News

Microsoft researchers alert Apple about a security bug in macOS
News
Microsoft researchers alert Apple about a security bug in macOS
Apple decides to cut back on iPad production to allocate components to iPhone 13

News

Apple decides to cut back on iPad production to allocate components to iPhone 13
Amazon satellite set to launch in late 2022, more than 3,000 satellites to be delivered

News

Amazon satellite set to launch in late 2022, more than 3,000 satellites to be delivered
Elon Musk Starlink sets up an Indian subsidiary, plans to apply for a license

Telecom

Elon Musk Starlink sets up an Indian subsidiary, plans to apply for a license
Squid Game inspired cryptocurrency crashed after an apparent scam revealed

News

Squid Game inspired cryptocurrency crashed after an apparent scam revealed

new arrivals in india

Samsung Galaxy M42 5G
Samsung Galaxy M42 5G

21,999

Xiaomi Mi 11 Ultra
Xiaomi Mi 11 Ultra

69,999

Xiaomi Mi 11X
Xiaomi Mi 11X

29,999

Realme 8 5G
Realme 8 5G

13,999

Samsung Galaxy F12
Samsung Galaxy F12

10,999

POCO X3 Pro
POCO X3 Pro

18,999

Realme 8 Pro
Realme 8 Pro

17,999

Realme 8
Realme 8

14,999

Vivo X60 Pro Plus
Vivo X60 Pro Plus

69,990

Vivo X60 Pro
Vivo X60 Pro

49,990

Best Sellers