(Subscribe to our Today's Cache newsletter for a quick snapshot of top 5 tech stories. Click here to subscribe for free.)
Hackers exploited a massive macOS software bug that allowed them to bypass core Apple security checks and leave Mac users at grave risk, according to security researchers Cedric Owens and Patrick Wardle.
Owens noted that the bug allowed him to build a malicious app that mimicked a harmless file which in turn helped bypass macOS' built-in security mechanisms when opened.
ADVERTISEMENT
"It's the most dangerous macOS payload I have encountered on recent versions of macOS because it completely bypasses Gatekeeper and the user does not even get any pop-ups or warnings," Owens told
Owens explained that a user just has to do download the ‘.dmg’ or ‘.zip’ file that contains the payload. Once double clicked, the payload silently detonated without warning the victim.
He had reported the bug to Apple, and the company has patched the bug in macOS 11.3. Owens urged all users to update to BigSur 11.3 to avoid any security risk.
ADVERTISEMENT
Also Read : Apple’s security check fails second time in six weeks
Patrick Wardle, a Mac security researcher, explained in a blog post how and why the bug works. He said that due to a subtle logic bug in Apple's policy engine, it was possible to create a malicious app without being notarised. And that Apple's app review process allowed the app to launch without any prompts or alerts.
Wardle noted that the harmless PDF document, without notarisation, was able to launch the calculator app and do other things.
He added that the bug could have been introduced with macOS 10.15's new notarisation logic, meaning Apple's idea to secure macOS backfired.