This morning, Microsoft’s 365 Defender research team secreted detailed description of a new macOS “Powerdir” vulnerability that allows an attacker to bypass transparency, consent, and control technology to gain unauthorized access to protected data.
According to Microsoft, the “Powerdir” security vulnerability could allow the installation of a forge TCC database.
Microsoft has a detailed description of how the vulnerability acts, and the company says its security investigates continue to “monitor the threat landscape” for new vulnerabilities and attack procedures changing macOS and other non-Windows devices.
“Software vendors like Apple, protection researchers, and the larger security community, need to continuously work together to identify and fix vulnerabilities before attacks can take advantage of them, ” wrote Microsoft’s security team.
Read more: techncruncher.blogspot.com