The Microsoft 365 Defender security research team discovered a new vulnerability in macOS that allows an attacker to bypass the System integrity protection or SIP. This is a critical security feature in macOS which uses kernel permissions to limit the ability to write critical system files.
Microsoft explains that they also found a similar technique that could allow an attacker to gain elevated root privileges on an affected device, basically allowing to install a rootkit on macOS.
Comments are closed.