Update Now: New Mac Vulnerability Allows Apps to Spy On You | Digital Trends

  • 📰 DigitalTrends
  • ⏱ Reading Time:
  • 56 sec. here
  • 2 min. at publisher
  • 📊 Qulity Score:
  • News: 26%
  • Publisher: 65%

Microsoft is warning of a new Mac vulnerability that could allow attackers to secretly hijack apps and spy on you.

United States Headlines News

United States Latest News, United States Headlines

Microsoft is warning Mac users to update to the latest version of MacOS Monterey after it found a vulnerability in Apple’s Transparency, Consent, and Control feature.

Introduced in 2012 with MacOS Mountain Lion, TCC is designed to help control an app’s access to things such as the camera, microphone, and data. When an app requests access to protected data, the request is compared to existing stored records in a special database. If the records exist, then the app is denied or approved access based on a flag that denotes the level of access.

According to Microsoft, the “powerdir” vulnerability, also known as CVE-2021-30970, was actually exploited two times by their security researchers. The first “proof of concept” exploit basically planted a fake TCC database file and changed the user’s home directory. The second proof of concept exploit came about because a change in MacOS Monterey’s dsimport tool broke the first exploit. This new exploit allows an attacker to use code injection to change binary called /usr/libexec/configd. This binary is responsible for making system level configuration changes, including access to the TCC database. This allowed Microsoft to silently change the home directory and execute the same kind of attack as the first exploit.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

 /  🏆 95. in US
 

Thank you for your comment. Your comment will be published after being reviewed.
Please try again later.

Great news

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

Mac and Linux games leave Humble Bundle’s Trove after January 31st | EngadgetStarting on February 1st, the Mac and Linux versions of the games in the Humble Trove will no longer be available..
Source: engadget - 🏆 276. / 63 Read more »

Mac Continued to Grow Faster in 2021 Than Any Windows Brand | Digital TrendsApple had a big year in 2021 for the Mac, with sales up 28% in a single year. That’s largely thanks to the M1 and its freshly overhauled desktops and laptops.
Source: DigitalTrends - 🏆 95. / 65 Read more »

Mac Continued to Grow Faster in 2021 Than Any Windows Brand | Digital TrendsApple had a big year in 2021 for the Mac, with sales up 28% in a single year. That’s largely thanks to the M1 and its freshly overhauled desktops and laptops.
Source: DigitalTrends - 🏆 95. / 65 Read more »

Gmail App Hits 10 Billion Downloads, 53% U.S. Email Market | Digital TrendsGmail is an under-appreciated but widely used service, and it recently became only the fourth app to reach 10 billion downloads on the Google Play Store. the gmail app is honestly superior, it has the categories like gmail web does and honestly is the best for email tbh, can’t even use the default email app on my phone becuz gmail’s app is so nice
Source: DigitalTrends - 🏆 95. / 65 Read more »

NVIDIA Shield Will Update All Models To Android 11 | Digital TrendsNVIDIA Shield TV is getting a major update that will bring Android 11 to the gaming and streaming platform.
Source: DigitalTrends - 🏆 95. / 65 Read more »

Instagram Considers New Feature for Greater Personalization | Digital TrendsInstagram is reported to be exploring a new feature that lets you you edit your profile grid for greater personalization.
Source: DigitalTrends - 🏆 95. / 65 Read more »