Thursday, March 21, 2019

Zero-day Safari Exploits Allowed Complete Takeover of Mac

Ben Lovejoy:

The first exploit managed to escape the sandbox, a protection macOS uses to ensure that apps only have access to their own data, and any system data permitted by Apple.

[…]

The second got rather further, gaining both root and kernel access to the Mac.

This despite process isolation and sandboxing

1 Comment RSS · Twitter

At least the platform is harder to use as a consumer now. Wait, no that's bad too. Kidding, mind of. maybe. I get security can be inconvenient sometimes, but it is funny the number of ways to exploit an increasingly walled garden platform.

Leave a Comment