Artificial Intelligence | News | Insights | AiThority
[bsfp-cryptocurrency style=”widget-18″ align=”marquee” columns=”6″ coins=”selected” coins-count=”6″ coins-selected=”BTC,ETH,XRP,LTC,EOS,ADA,XLM,NEO,LTC,EOS,XEM,DASH,USDT,BNB,QTUM,XVG,ONT,ZEC,STEEM” currency=”USD” title=”Cryptocurrency Widget” show_title=”0″ icon=”” scheme=”light” bs-show-desktop=”1″ bs-show-tablet=”1″ bs-show-phone=”1″ custom-css-class=”” custom-id=”” css=”.vc_custom_1523079266073{margin-bottom: 0px !important;padding-top: 0px !important;padding-bottom: 0px !important;}”]

Perception Point Discovers a MacOS Zero-day Allowing Attackers to Bypass Apple’s System Integrity Protection

CloudNewsSecurity
By AIT News Desk

Perception Point, a leading email and cloud collaboration channel security company offering fast interception of content-borne attacks as a service, announced that its researchers have uncovered a zero-day flaw in macOS. CVE-2022-22583, now fixed in macOS Monterey 12.2, reveals a vulnerability that allows attackers to bypass Apple’s SIP (System Integrity Protection) mechanism, and thus take full control over the system, provided that they already managed to achieve code execution with high privileges.

SIP is a security mechanism in macOS which represents the final protection layer between an attacker and full control of the system. Introduced by Apple on macOS 10.11 (2015), it has the objective of protecting the system as a whole, and limiting even highest privilege users, such as root users, from performing potentially malicious actions such as overwriting system files, loading a malicious kernel driver, installing malware and more.

Recommended AI News: Payments and DeFi-centric Blockchain, Fuse Network, Announces Major Integration with Sushi

The discovered zero-day is a successor to CVE-2021-30892, published by Microsoft last October. This CVE was named “Shrootless” and was fixed on macOS Monterey 12.0.1.

Related Posts

Daytona Unveils Agent-Agnostic Infrastructure for Sandboxing AI Coding Assistants

Verax AI Raises $7.6 million in Seed Funding Led by TQ Ventures

AI helps Data Engineers be Distinguished Data Engineers

1 of 40,576

The zero-day was discovered as part of Perception Point’s ongoing research work to fortify its patented dynamic scanning technology, the HAP™ (hardware-assisted platform), which combines CPU-level data with innovative software algorithms to rapidly intercept any type of exploit, in both Windows and Mac operating systems.

“Attackers are becoming increasingly sophisticated and are attempting to find exploits and vulnerabilities that are OS-specific,” said Shlomi Levin, CTO at Perception Point. “With the growing popularity of Mac computers, it is imperative to be able to intercept content-borne threats on both Windows and macOS to fully protect the organization.”

Recommended AI News: Binance Becomes the Blockchain and Cryptocurrency Industry’s First to Join the National Cyber-Forensics and Training Alliance (NCFTA)

[To share your insights with us, please write to sghosh@martechseries.com]

AIT News Desk

AIT News Desk is a trained group of web journalists and reporters who collect news from all over the technology landscape. The technical space includes advanced technologies related to AI, ML, ITops, Cloud Security, Privacy and Security, Cyberthreat intelligence, Space, Big data and Analytics, Blockchain and Crypto.
To connect, please write to AiT Analyst at news@martechseries.com.

You might also like More from author

Comments are closed.