Mac exploit dodges Apple's anti-malware app examine

Mac exploit dodges Apple's anti-malware app check

When you’ve used a Mac operating OS X Mountain Lion or later, you are properly-acquainted with Gatekeeper: it is the safety measure that forestalls unsigned apps from operating until you need them to. Sadly, it seems that this primary line of protection is not fairly as safe because it’s purported to be. Synack safety researcher Patrick Wardle has found a flaw that lets malware get round Gatekeeper and do what it needs together with your system. The trick ‘hijacks’ a signed app to fake that it is legit, and makes use of intelligent file packaging to launch hostile code as soon as OS X declares the host app protected. Wardle solely used one app in a proof of idea demonstration, however different apps ought to work. You can even use malicious plugins (say, Photoshop add-ons) to bypass Gatekeeper.

For sure, this can be a probably nasty flaw. If attackers can persuade you to obtain and set up an genuine-wanting app, they will have a subject day. The excellent news? Wardle took care to inform Apple earlier than disclosing the exploit, and the corporate says that it is already engaged on a patch. It isn’t clear when it will arrive, so you will need to keep in your toes till then — seize apps solely from these sources you possibly can belief.

[Image credit: Getty Images/OJO Images RF]

Excellent news, Engadget peoples! We’re making a single login system for each our product database and feedback. The primary a part of that transition is a brand new commenting system, launching on September thirtieth. All of your previous feedback will ultimately (not instantly) migrate with you.