puddingebola writes: In May, security researcher Filippo Cavallarin made public a vulnerability in macOS’s Gatekeeper. The vulnerability can allow an attacker to use a symlink and an NFS server to bypass Gatekeepers authentication and run malicious code. The malware has been named OSX/Linker and has been tied to the same group that operates the OSX/Surfbuyer adware. All macOS versions are affected, including the latest 10.14.5, and Apple has yet to release a patch to this day, a full month after Cavallarin’s public disclosure.
Read more of this story at Slashdot.
Source:
https://it.slashdot.org/story/19/06/29/0651212/new-mac-malware-abuses-recently-disclosed-gatekeeper-zero-day?utm_source=rss1.0mainlinkanon&utm_medium=feed