Home » News » Apple fixes a nasty 'Achilles' flaw that makes your Mac vulnerable to attack

Apple fixes a nasty 'Achilles' flaw that makes your Mac vulnerable to attack

December 22, 2022 By Raulf Hernes
(Image Credit Google)
If you haven't already, update your Mac to the most latest versions of Ventura, Monterey, or Big Sur. An attacker could use a nasty new bug patched in last week's updates to circumvent Apple's strict security protocols and install malware on your Mac. Microsoft discovered the Achilles vulnerability and posted about it on its Security blog. Achilles essentially uses a file format called AppleDouble within macOS that contains Access Control Lists with restricted permissions to fool Gatekeeper, a macOS feature that restricts malware installations. Once Gatekeeper is disabled, the software installation can progress without the user being prompted or any part of the system interfering, even when the system is in Lockdown mode. Microsoft observes that since Achilles is identified as CVE-2022-42821 in the National Vulnerability Database and was discovered by Microsoft in July. It is customary for vulnerability discoverers to publish their study results after patches have been published. Microsoft has released a proof-of-concept video for Achilles, which can be found here. apple-will-let-you-repair-your-own-desktop-mac Achilles was fixed, according to Apple's security notes, when macOS Ventura was released in October; however, the mention of the fix was not in the original version of the notes and was added on December 13. In last week's updates, Apple also fixed Achilles in macOS Monterey and Big Sur. Gatekeeper was launched in Mac OS X Mountain Lion in 2012 and has had a few security flaws patched over the years—besides Achilles, Microsoft's blog lists six recent vulnerabilities. While Gatekeeper is an essential feature for Mac security, it isn't perfect, which is why it's important to install OS updates as quickly as possible.

By Raulf Hernes

If you ask me raulf means ALL ABOUT TECH!!

Leave a Reply

You must be logged in to post a comment.
Latest News

Walmart's GenAI Search Engine: Challenging Google's Dominance in Retail Search
March 12, 2024

Introducing the MSI Claw Handheld: Your Ultimate Gaming Companion
March 12, 2024

Uber Increases In-App Ads, Prompting Mixed Reactions from Customers
March 12, 2024

Apple's iOS 18: A Leap into the AI Era
March 12, 2024

Google's Regular Pixel 8 Won't Get Gemini Nano AI
March 12, 2024

MacBook Air M3 Makes Amends for M2's Storage Blunder
March 11, 2024

Samsung Unveils the Galaxy M15 5G
March 11, 2024

Elon Musk's xAI to Open-Source Chatbot Grok
March 11, 2024

Contra: Operation Galuga - A Modern Run-and-Gun Classic
March 11, 2024

Musk Confirms X's TV App Arrives This Week
March 11, 2024
RELATED NEWS
Samsung Unveils the Galaxy M15 5G

The much-awaited Galaxy M15 5G from Samsung has fi...

news-extra-space
Google Pixel Watch 3: Bigger, Better, and Packed with Potential

The Pixel Watch 3, which is expected to be a major...

news-extra-space
Google Pixel Phones in Line for SOS Feature via Satellite

The Google Pixel phone may soon prove to be a life...

news-extra-space
Tech Giants Bet Big on Figure, the Humanoid Robot Company

Figure AI, a rising star in the robotics industry,...

news-extra-space
Galaxy AI Takes Flight: Try Before You Buy on Any Phone!

Are you considering upgrading to the AI-powered Ga...

news-extra-space
Eufy Launches Wi-Fi-Free, 360° Security Camera with Built-in Solar Power

Anker's Eufy brand has just announced a game chang...

news-extra-space
2
3
4
5
6
7
8
9
10