Apple macOS Malware Can Access Your Webcam! Install Update 11.4 to Fix Now
A new malware has exploited a vulnerability in macOS to allow hackers to take control of the Mac hard drive, microphone and webcam without the user s consent.
Photo : Tranmautritam/Pexels
Malware free? Think again.
Days after Craig Federighi, Apple s head of software design, made an unprecedented admission in court on the ongoing Epic Games vs. Apple tiff that the Cupertino-based company has a problem with malicious, harmful software or malware, security researchers found more malware wreaking its havoc on the operating system for Macs, the macOS.
Apple macOS Malware Takes Control of User Hard Drive, Microphone, Webcam
Apple Patches Worst Zero-Day Bug In Recent Memory
May 20, 2021
Compliance
Compliance Twitter
Photo: Apple
There s one industry that has a particular knack for getting its hands on clever software vulnerabilities in macOS: the adware industry.
That ability has been demonstrated once again as Apple today patched a zero-day vulnerability, CVE-2021-30657, that allows an attacker to effortlessly route around three critical anti-malware defenses in macOS: Notarization, Gatekeeper and File Quarantine.
It was first discovered by Cedric Owens, a lead offensive security engineer with Twilio, who reported the bug to Apple. It has been patched in macOS 11.3, which was released on Monday.
Update Your Mac Right Now to Avoid This Massive Security Bug
Share
Photo: Stephen Lam, Getty Images
To sign up for our daily newsletter covering the latest news, features and reviews, head HERE. For a running feed of all our stories, follow us on Twitter HERE. Or you can bookmark the Gizmodo Australia homepage to visit whenever you need a news fix.
If you haven’t already, you should update your Mac right now. A recently patched zero-day vulnerability in macOS operating systems has been allowing hackers to bypass much of Apple’s security protocols and deploy malware on an unknown amount of computers, new research shows.
minute read
Share this article:
A variant of Mac No. 1 threat Shlayer since January already has been exploiting the vulnerability, which allows payloads to go unchecked through key OS security features.
Apple patched a zero-day vulnerability in its MacOS that can bypass critical anti-malware capabilities and which a variant of the notorious Mac threat Shlayer adware dropper already has been exploiting for several months.
Security researcher Cedric Owens first discovered the vulnerability, tracked as CVE-2021–30657 and patched in macOS 11.3, an update dropped by Apple on Monday. The vulnerability is particularly perilous to macOS users because it allows an attacker to very easily craft a macOS payload that goes unchecked by the strict security features built into the OS specifically to keep malware out.