News & Trends
Update>News & Trends
Trends & News
Title Bypass glitch allows malware to masquerade as legit Apple files   hot icon  
Date 2018-06-27 Hit 42

Title: Bypass glitch allows malware to masquerade as legit Apple files


Author: Tara Seals, Threat Post


Date: 12 June 2018


Abstract: Masquerading as an official Apple system file sounds like a wonderful way for malware to worm its way onto Macs – and a recently discovered code-signing bypass flaw allows bad code to do just that. The way some developers have implemented Apple’s official code-signing API can be exploited by attackers. Essentially, Apple makes an API available to developers that want to create a security function that verifies Apple files as being legitimate (by making sure the file’s code is signed). However, many of these developers have not used the API properly, so it introduces a vulnerability into the security product or function that allows for unsigned malicious code to appear to be signed by Apple. The result is that malware can fool vulnerable security products and services into thinking that it’s just another legitimate Apple file – so it slips past their security checks and onto the targeted machine.




5763 title
Next Malware groups mine five percent of all Monero
Prev World Cup 2018 is ‘ripe target’ for cybercrime as expert warns over ticket scams and hacked livestreams