Bugs Allowed Hackers To Make Malware Look Like Apple Software
Tuesday June 12, 2018. 04:09 PM , from Slashdot/Apple
An anonymous reader shares a report: For years, hackers could hide malware alongside legitimate Apple code and sneak it past several popular third-party security products for Mac computers, according to new research. This is not a flaw in MacOS but an issue in how third-party security tools implemented Apple's APIs. A researcher from security firm Okta found that several security products for Mac -- including Little Snitch, xFence, and Facebook's OSquery -- could be tricked into believing malware was Apple code, and let it past their defenses. 'I can take malicious code and make it look like it's signed by Apple,' Josh Pitts, the security researcher at Okta who discovered these bugs, told Motherboard. In a blog post published Tuesday, Pitts explained that the issue lies with how the third-party security tools implemented Apple's code-signing APIs when dealing with Mac's executable files known as Universal or Fat files.
Read more of this story at Slashdot.
Oct, Thu 18 - 01:24 CEST