Rootpipe Reborn (Part II)
@CodeColorist continues writing about bugs, such as CVE-2019-8521 and CVE-2019-8565 that provide a mechanism to elevate privileges to root on
Read more06
@CodeColorist continues writing about bugs, such as CVE-2019-8521 and CVE-2019-8565 that provide a mechanism to elevate privileges to root on
Read moreA 0day logic flaw in Microsoft Excel leads to ‘remote’ code execution on macOS, via malicious macros.Objective-See’s BlogRead More
Read moreOn my flight to ShmooCon, I managed to panic my fully-patched MacBook. Here we analyze the kernel panic report, finding
Read moreOSX/MaMi (the first Mac malware of 2018) hijacks infected users’ DNS settings and installs a malicious certificate into the System
Read moreHere, we reverse, then ‘extend’ a popular macOS anti-virus engine. With the creation of a new anti-virus signature, classified documents
Read moreTurns out the innocuously named “Calendar 2” app, found on the official Mac App Store, was surreptitiously turning Mac into
Read moreAre full paths and preview thumbnails for files even on encrypted containers and removable usb devices really persistently stored? …yes
Read moreIn this guest blog post my friend Mikhail Sosonkin reverses Apple’s screencapture utility, discusses Mac malware that captures desktop images,
Read moreAnalyzing code within the macOS kernel audit subsystem uncovered an exploitable heap overflow.Objective-See’s BlogRead More
Read moreI uncovered a new cross-platform backdoor that provides remote attackers persistent access to infected systemsObjective-See’s BlogRead More
Read more