Odaily星球日报讯 据官方消息,Microsoft Threat Intelligence 发现了一个新的 macOS 漏洞CVE-2024-44243,该漏洞可能允许攻击者通过加载第三方内核扩展来绕过 macOS 中的 Apple 系统完整性保护(SIP)。 SIP 是一种安全技术,可限制可能损害系统完整性的操作的执行;因此,SIP 绕过会影响操作系统的整体安全性。绕过 SIP 可能会导致严重后果,例如增加攻击者和恶意软件作者成功安装Rootkit、创建持久性恶意软件、绕过透明度、同意和控制(TCC)的可能性,并扩大其他技术和漏洞的攻击面。
Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.