CIO Influence
CIO Influence News Microsoft Security

Perception Point Discovers a MacOS Zero-day Allowing Attackers to Bypass Apple’s System Integrity Protection

by CIO Influence News Desk
Perception Point Discovers a MacOS Zero-day Allowing Attackers to Bypass Apple's System Integrity Protection
The zero-day, a successor to Microsoft’s recently published “Shrootless” vulnerability, allows attackers to take full control over the victim’s system

Perception Point, a leading email and cloud collaboration channel security company offering fast interception of content-borne attacks as a service, announced that its researchers have uncovered a zero-day flaw in macOS. CVE-2022-22583,ย now fixed in macOS Monterey 12.2, reveals a vulnerability that allows attackers to bypass Apple’s SIP (System Integrity Protection) mechanism, and thus take full control over the system, provided that they already managed to achieve code execution with high privileges.

SIP is a security mechanism in macOS which represents the final protection layer between an attacker and full control of the system. Introduced by Apple on macOS 10.11 (2015), it has the objective of protecting the system as a whole, and limiting even highest privilege users, such as root users, from performing potentially malicious actions such as overwriting system files, loading a malicious kernel driver, installing malware and more.

Top iTechnology Automation News: BigPanda Announces Global Expansion and Midsize Enterprise Presence Fueled by Explosive Demand for AIOps

The discoveredย zero-day is a successor toย CVE-2021-30892, published by Microsoft last October. This CVE wasย named “Shrootless” and was fixed on macOS Monterey 12.0.1.

The zero-day was discovered as part of Perception Point’s ongoing research work to fortify its patented dynamic scanning technology, the HAPโ„ข (hardware-assisted platform), which combines CPU-level data with innovative software algorithms to rapidly intercept any type of exploit, in both Windows andย Mac operating systems.

“Attackers are becoming increasinglyย sophisticated and are attemptingย to find exploits and vulnerabilities that are OS-specific,” saidย Shlomi Levin, CTO at Perception Point. “With the growing popularity of Mac computers, it is imperative to be able to intercept content-borne threats on both Windows and macOS to fully protect the organization.”

Top iTechnology Networking News: Balbix Appoints Chris van Staden as Chief Revenue Officer

[To share your insights with us, please write toย sghosh@martechseries.com]

CIO Influence News Desk is a dedicated news publication center that publishes the top news, insights and analysis related to Information Technology, Cloud Modernization, DevOps, Security, Storage and ML ops.

Related posts

84% Of Organizations Prioritize Commercial Success Over Sustainability, Finds New Software AG Research

CIO Influence News Desk

WiMi Developed Metasurface Eyepiece for Augmented Reality with Ultra-wide FOV

PR Newswire

AWS Supply Chain Is Adopted Early by Equipment Depot

Cision PRWeb

Leave a Comment

Save my name, email, and website in this browser for the next time I comment.