Critical macOS Flaw Lets Attackers Bypass Apple Privacy Controls Without Consent

A newly disclosed macOS vulnerability bypasses Apple’s TCC privacy controls, allowing silent access to files, microphone data ...
Bleeping Computer

Exploited Windows zero-day lets JavaScript files bypass security warnings

An update was added to the end of the article explaining that any Authenticode-signed file, including executables, can be modified to bypass warnings. A new Windows zero-day allows threat actors to ...
Bleeping Computer

Specially Crafted ZIP Files Used to Bypass Secure Email Gateways

Attackers are always looking for new tricks to distribute malware without them being detected by antivirus scanners and secure email gateways. This was illustrated in a new phishing campaign that ...
Threat Post

Bypass Glitch Allows Malware to Masquerade as Legit Apple Files

Malware can to worm its way onto Macs thanks to a recently discovered code-signing bypass flaw. Masquerading as an official Apple system file sounds like a wonderful way for malware to worm its way ...
TechRadar

Bypass for Windows trusted file label gets unofficial patch

A vulnerability that allowed threat actors to bypass the Windows Mark of the Web (MotW) security mechanism has an unofficial fix thanks to micropatching service 0patch. MoTW automatically flags all ...