Lucene search
K

8 matches found

The Hacker News
The Hacker News
added 2024/10/18 5:42 a.m.36 views

Microsoft Reveals macOS Vulnerability that Bypasses Privacy Controls in Safari Browser

Microsoft has disclosed details about a now-patched security flaw in Apple's Transparency, Consent, and Control TCC framework in macOS that has likely come under exploitation to get around a user's privacy preferences and access data. The shortcoming, codenamed HM Surf by the tech giant, is track...

5.5CVSS6.2AI score0.07052EPSS
Exploits1
Malwarebytes
Malwarebytes
added 2022/01/25 9:1 a.m.13 views

A week in security (January 17 – 23)

Last week on Malwarebytes Labs: CISA calls for urgent action against critical threats Red Cross begs attackers to “Do the right thing” after family reunion service compromised Update now! Chrome patches critical RCE vulnerability in Safe Browsing Combatting SMS and phone fraud: UK government issu...

1.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/01/24 11:41 a.m.16 views

A week in security (January 17 — 23)

Last week on Malwarebytes Labs: CISA calls for urgent action against critical threats Red Cross begs attackers to “Do the right thing” after family reunion service compromised Update now! Chrome patches critical RCE vulnerability in Safe Browsing Combatting SMS and phone fraud: UK government issu...

1.3AI score
Exploits0
Malwarebytes
Malwarebytes
added 2022/01/19 2:44 p.m.45 views

Mac users, update now! “Powerdir” flaw could allow attackers to spy on you

If you have been forgoing updating your Mac, this article might make you think twice. The Microsoft 365 Defender Research Team has discovered a vulnerability in macOS, which allows malicious apps to successfully bypass a users privacy preferences. This means attackers could access personal data...

4.3CVSS6.7AI score0.13453EPSS
Exploits0
ThreatPost
ThreatPost
added 2022/01/11 8:35 p.m.170 views

MacOS Bug Could Let Creeps Snoop On You

Microsoft on Monday released details about a bug in macOS that Apple fixed last month – named “powerdir” – that could let attackers hijack apps, install their own nasty apps, use the microphone to eavesdrop or grab screenshots of whatever’s displayed on your screen. The vulnerability allows...

7.8CVSS7.2AI score0.13453EPSS
Exploits1References17
The Hacker News
The Hacker News
added 2022/01/11 7:9 a.m.143 views

Microsoft Details macOS Bug That Could Let Attackers Gain Access to User Data

Microsoft on Monday disclosed details of a recently patched security vulnerability in Apple's macOS operating system that could be weaponized by a threat actor to expose users' personal information. Tracked as CVE-2021-30970, the flaw concerns a logic issue in the Transparency, Consent and Contro...

7.8CVSS0.4AI score0.13453EPSS
Exploits1
Microsoft Secure
Microsoft Secure
added 2022/01/10 5:0 p.m.96 views

New macOS vulnerability, “powerdir,” could lead to unauthorized user data access

Following our discovery of the “Shrootless” vulnerability, Microsoft uncovered a new macOS vulnerability, “powerdir,” that could allow an attacker to bypass the operating system’s Transparency, Consent, and Control TCC technology, thereby gaining unauthorized access to a user’s protected data. We...

4.6CVSS7.5AI score0.13453EPSS
Exploits1
Microsoft Malware Protection
Microsoft Malware Protection
added 2022/01/10 5:0 p.m.144 views

New macOS vulnerability, “powerdir,” could lead to unauthorized user data access

Following our discovery of the “Shrootless” vulnerability, Microsoft uncovered a new macOS vulnerability, “powerdir,” that could allow an attacker to bypass the operating system’s Transparency, Consent, and Control TCC technology, thereby gaining unauthorized access to a user’s protected data. We...

4.6CVSS7.5AI score0.13453EPSS
Exploits1
Rows per page
Query Builder