Summary: Apple has patched a critical macOS vulnerability (CVE-2024-44243) that allowed local attackers to bypass System Integrity Protection (SIP) and install malicious kernel drivers. This flaw could lead to severe security risks, including the installation of rootkits and unauthorized access to user data.
Threat Actor: Local attackers | local attackers
Victim: macOS users | macOS users
Key Point :
- Vulnerability allows bypassing SIP without physical access to the device.
- Attackers can install persistent malware and circumvent security checks.
- Microsoft highlights the importance of SIP as a critical safeguard against malware.
- Previous SIP bypass vulnerabilities have been discovered, emphasizing ongoing security concerns.