How Just Opening A Site In Safari Could Have Hacked Your Apple macOS. Every now and then there are many vulnerabilities in various operating systems which result in the ultimate loss of users of it. And now, Dropbox’s security management team Syndis, a CyberSecurity research Firm has found a crucial bug in Apple’s very own macOS system’s Safari Web browser said on their blog post.
Although as soon as the bug was reported to Apple, they fixed it in their next month’s security patch update. Yes, It is appreciable to do so. A question arises, Why and how do these vulnerabilities arrive?
Well, The first flaw was so devastating that it could allow an attacker to automatically mount a disk image on User’s System without his consent. The second flaw could allow the attacker to launch any malicious code within the system as it gave access to bundle directory files which are a core component of the system.
The third vulnerability involved a bypass of macOS Gatekeeper anti-malware, allowing a maliciously crafted application to bypass code signing enforcement and execute a modified version of Terminal app leading to arbitrary commands execution. The attack could have been easily initiated by just luring in the victim to visit a specified web page. As soon as the web page was opened and loaded into memory, it could easily do its job.
Yet the flaws are fixed by Apple, it is still doubtful to say whether such flaws would end in the future or not. As operating systems are loaded with new exciting features, bugs and flaws come along with them too, making a pathway for hackers to fulfill their nasty desires.
It should be noted that, on mid of this month, Safari Browser on Apple iPhone claimed to allow access to recently deleted photos.