News Categories

PSA: Update to macOS 11.3 now to fix flaw that lets malware bypass built-in defences

By Kenny Yeo - on 27 Apr 2021, 10:44am

PSA: Update to macOS 11.3 now to fix flaw that lets malware bypass built-in defences

Alongside iOS 14.5, Apple also released macOS 11.3. New features aside, it also addresses a serious security flaw.

Security researchers have discovered that it was possible to get trick macOS and bypass many of macOS' built-in protections like File Quarantine and GateKeeper.

Cedric Owens, a security researcher who discovered the bug in mid-March, said:

All the user would need to do is double click — and no macOS prompts or warnings are generated.

To prove it, he designed a proof-of-concept app disguised as a document but opening it launches the Calculator app instead. Check it out below.

(Image source: Techcrunch)

Attackers could therefore exploit this vulnerability simply by tricking someone into opening a spoofed document. 

Techcrunch has an in-depth write-up on how the bug works. 

Fortunately, Apple confirms that this bug has been fixed in macOS Big Sur 11.3. And for those who are still on Catalina and Mojave, Apple has released security patches for those as well.

Apart from this fix, macOS Big Sur 11.3 also includes the ability to track AirTags in the Find My app, new emojis, new Siri voices, support for Sony's and Microsoft's new controllers, and more.

To update to macOS Big Sur 11.3, simply click the Apple logo in the top left corner, then click "About This Mac" and then the "Software Update" button.

Click here to see the full list of macOS Big Sur 11.3 updates and enhancements.

Source: Techcrunch, Apple

Join HWZ's Telegram channel here and catch all the latest tech news!
Our articles may contain affiliate links. If you buy through these links, we may earn a small commission.