Buzz
In a 1-minute video, security researcher Patrick Wardle presented evidence demonstrating a security loophole in the dark mode interface of macOS, which could be exploited by attackers to access sensitive user data, such as information stored in the address book.
Vulnerability in macOS Mojave Allows Access to Protected Files
Issue with Implementing New Security Mechanism
Responding to BleepingComputer, a security researcher stated that he could access users' secret contacts through an application not granted privileges, meaning it was not running under Admin rights.
Patrick Wardle suggests that the Zero-day vulnerability stems from Apple's implementation of privacy data protection measures. He emphasizes that the loophole he discovered in the execution process has a reliability rating of up to 100%, allowing malicious or untrusted applications to bypass the new security mechanism and access sensitive data.
However, Wardle's bypass mechanism does not affect all new privacy security features, and hardware-based components like the webcam remain unaffected.
The security researcher also mentioned that he is currently holding technical details and the operation mechanism of the security loophole. This information will be disclosed at the Mac Security conference he is hosting in Maui, Hawaii, in November.
The video below illustrates Wardle's attempt to copy content from the contacts section, being denied when the operating system requests Admin rights. However, the researcher later ran an unprivileged application allowing him to copy contact data to the computer and gain access to other information.
Protecting User Data on macOS Mojave
As part of its data protection efforts, macOS Mojave users need to be cautious when granting permissions for apps to access location services, contacts, calendar, reminders, photos, as well as some other personal information and data files.
This implies that applications cannot automatically access by simulating human inputs using predefined APIs. Such accesses will be blocked in Apple's latest operating system, triggering authorization prompts for direct interaction with users.
To limit the continuous display of authorization reminder notifications on the screen, Apple allows users to preauthorize apps they want to grant access to data, sensitive information by adding these apps to the Application Data category in the System Preferences, Security & Privacy window on the system.
Patrick Wardle is one of the renowned macOS hackers and also the creator of some free security tools for Apple's operating system. Among the security flaws Patrick Wardle discovered on macOS, the latest security flaw he found in an incident was disclosed at the Def Con conference last August.
Users should also equip themselves with knowledge to protect their devices. If you're using a Mac, you can refer to ways to protect your Mac from malware here.
After extensive testing, Microsoft officially releases Office 2019 for Windows and Mac with numerous new features, providing enhanced support for users. If you're using older versions, quickly upgrade to this new Office 2019 release.
