On January 15th, Microsoft Threat Intelligence discovered a new macOS vulnerability, CVE-2024-44243, which may allow attackers to bypass Apple System Integrity Protection (SIP) in macOS by loading third-party kernel extensions. SIP is a security technology that limits the execution of operations that could compromise system integrity, so bypassing SIP would affect the overall security of the operating system.
Bypassing SIP could lead to serious consequences, such as increasing the likelihood of attackers and malicious software authors successfully installing rootkits, creating persistent malicious software, bypassing transparency, consent, and control (TCC), and expanding the attack surface of other technologies and vulnerabilities.
All Comments