Cointime

Download App
iOS & Android

Microsoft discovers new macOS vulnerability CVE-2024-44243, allowing attackers to install rootkits

On January 15th, Microsoft Threat Intelligence discovered a new macOS vulnerability, CVE-2024-44243, which may allow attackers to bypass Apple System Integrity Protection (SIP) in macOS by loading third-party kernel extensions. SIP is a security technology that limits the execution of operations that could compromise system integrity, so bypassing SIP would affect the overall security of the operating system.

Bypassing SIP could lead to serious consequences, such as increasing the likelihood of attackers and malicious software authors successfully installing rootkits, creating persistent malicious software, bypassing transparency, consent, and control (TCC), and expanding the attack surface of other technologies and vulnerabilities.

Comments

All Comments

Recommended for you