Project Zero, Google’s security team, discovered and reported that there is high-risk vulnerability in macOS file system, which allowing malicious attackers to modify the file system image installed by the user. The modification is hardly noticed due to the management of virtual subsystem. The vulnerability will use XNU COW to write date in processes. This […]
This week, Linus Henze, Gernman security researcher, found a new zero-day vulnerability on macOS named “KeySteal”, which is to access all the sensitive data of the user with the related password. It seems that Linus Henze used a malicious app to extract data from the app accessed with Mac’s keychain, without the administrator right or password. […]
Lately Apple released macOS 10.14.4 Beta 1 for developers, containing some new features particularly for users. Now the Auto Fill of the brand new Safari for Mac with Touch ID has been discovered in macOS 10.14.14. With the Auto Fill, you can automatically insert addresses, names, and passwords on websites to save time. But in the […]