niomminds.blogg.se

You can check for and install the latest version of macOS by going to System Preferences > Software Update and making sure you are running macOS 12.5.1 Monterey or later.The archiver is a program for the simultaneous packaging of one or any other number of files in order to conveniently copy, send, and store them. If you or someone you know doesn’t already practice their due diligence in installing software updates, now might be a good time to start. In this instance, we’ve got a great example of why it is so important to run Software Update regularly. However, we all know folks who rarely, if ever, install updates to macOS. Jamf disclosed the flaw to Apple at the end of May, and Cupertino patched it in July. The Importance of Regularly Running Software Update Abusing this flaw would allow hackers to circumvent Gatekeeper along with other macOS security checks. In certain cases, Archive Utility fails to give some of the unarchived files the quarantine attribute telling macOS to analyze the file before running it. By default, macOS will open such files in its native Archive Utility. The way it works completely skirts an earlier archive-related bug in Safari, instead relying on the user to double-click a compressed file created using the Apple Archive format.

All of this would happen without macOS displaying the usual security prompts. In essence, the vulnerability allowed hackers to build a specially-crafted archive that could lead to a user unknowingly running an unsigned, unnotarized application. Only recently, Jamf Threat Labs disclosed the vulnerability in a public blog post. The fix was labeled CVE-2022-32910 and was included in macOS Monterey 12.5. The researchers reported it to Apple on May 31, and the Cupertino-based tech giant promptly patched the vulnerability. The exploit was first discovered by Jamf Threat Labs in May. Security Vulnerability in macOS Archive Utility Lets Hackers Waltz Through Gatekeeper Unnoticed

Apple patched the hole months ago, so you should be safe if you regularly update macOS. A vulnerability in the macOS Archive Utility could lead to unwanted software bypassing Gatekeeper security measures. Highlighting the need to keep your Mac up-to-date with the latest operating system updates, security researchers announced a new threat.