Good news ! Hackbusters community is waiting for you !  https://discuss.hackbusters.com
KnowBe4 has been running the HackBusters site for a few years now, providing you with trending IT security news. We are expanding it and have launched a new exciting online community! The forum is divided into four main topics or categories: Social Engineering, Ransomware, Phishing and Security Awareness Training. You are invited to be one of the first to join us at: https://discuss.hackbusters.com.

Google Project Zero discloses zero-day in Apple macOS Kernel

Apple-botnet
Cybersecurity expert at Google Project Zero has publicly disclosed details and proof-of-concept exploit for a high-severity security vulnerability in macOS operating system.

Google Project Zero white hat hacker Jann Horn disclosed the flaw according to the 90-days disclosure policy of the company because Apple failed to address the issue within 90 days of being notified.

The zero-day flaw was demonstrated by Ian Beer, it resides in the way macOS XNU kernel allows an attacker to manipulate filesystem images without informing the operating system.

The vulnerability could be exploited by an attacker or a malicious application to bypass the copy-on-write (COW) functionality to cause unexpected changes in the memory shared between processes.

The flaw could potentially lead to memory corruption attacks.

“Copy-on-write(CoWorCOW), sometimes referred to asimplicit sharingorshadowing, is a resource-management technique used in computer programming to efficiently implement a “duplicate...(continued)

View All Trending Stories