uninstallmacapp.com News
  • Home

Security researchers discovered a way to invade new Mac

  • By admin
  • Aug-14-2018
  • Tech News
  • 0 Comments.

At the Black Hat Conference held in Las Vegas, security researchers demonstrated a way to control a new Mac.

At the Black Hat held in Las Vegas, security researchers demonstrated a way to control a new Mac. They said there were vulnerabilities in the ways of Mac’s MDM, which allowing them to install malicious software without limitations, even before the user sees the desktop the first time. Of course, attacking a new Mac is not easy.

img201808111116150

According to the report of Wired, when a Mac opens and connects to Wi-Fi for the first time, it will continuously register Apple’s servers, almost meaning: Hey, I’m a MacBook with serial number, I belong to whom, and what I should do.

The serial number is part of the registration of DEP and MDM, Mac will automatically activate the predetermined setting sequence through Apple’s servers and MDM supplier’s servers when registering for the first time. Enterprises usually rely on third-party MDM to navigate Apple’s ecosystem for enterprises.

But researchers found a problem during the process. When MDM is being transferred to Mac App Store for downloading enterprise software, the sequence will search a list used to determine which to download and where to install without confirming the authenticity of the list.

If hackers can lurk between MDM supplier’s web servers and devices to attack, they will be able to replace the download list with malicious programs, instructing the Mac to install them. This kind of malicious programs include keylogger, screen capturer as well as vulnerability tools of the whole network.

Jesse Endahl, chief security researcher of Mac’s management company Fleetsmith, and Max Belanger, Dropbox’s engineer, discovered the issue. They reported to Apple, letting the company fix it with certain time before they reveal the attacking way. In fact, this vulnerability has been fixed in macOS 10.13.6.

Comments

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

← Previous Post Next Post →

Recent Posts

  • Supplementary update of macOS Mojave: bug fixes for the system and Safari 14
  • New Malware on Mac: Spread through Xcode Project
  • Apple releases the first public beta of macOS Big Sur
  • A new Intel-based iMac probably released this week: design remains unchanged
  • Supply chain expects MacBook shipments to grow by more than 20% in the third quarter

Recent Comments

    Archives

    • October 2020
    • August 2020
    • July 2020
    • June 2020
    • May 2020
    • April 2020
    • March 2020
    • February 2020
    • January 2020
    • December 2019
    • November 2019
    • October 2019
    • September 2019
    • August 2019
    • July 2019
    • June 2019
    • May 2019
    • April 2019
    • March 2019
    • December 2018
    • November 2018
    • October 2018
    • September 2018
    • August 2018
    • July 2018
    • June 2018
    • September 2017
    • August 2017
    • July 2017
    • June 2017
    • May 2017
    • April 2017
    • March 2017
    • February 2017
    • January 2017
    • December 2016
    • November 2016
    • October 2016
    • September 2016
    • August 2016
    • July 2016
    • June 2016
    • May 2016
    • April 2016
    • March 2016
    • February 2016
    • January 2016
    • December 2015
    • November 2015
    • October 2015
    • September 2015
    • August 2015
    • July 2015

    Categories

    • gaming news
    • life news
    • Remove Guides
    • Tech News
    • Uncategorized

    Meta

    • Log in
    • Entries RSS
    • Comments RSS
    • WordPress.org
    About This Site

    A cras tincidunt, ut tellus et. Gravida scel ipsum sed iaculis, nunc non nam. Placerat sed phase llus, purus purus elit.

    Archives Widget
    • January 2010
    • December 2009
    • November 2009
    • October 2009
    Categories
    • Entertainment
    • Technology
    • Sports & Recreation
    • Jobs & Lifestyle
    Search

    Powered by WordPress  |  Business Directory by InkThemes.