New Mac OS X Vulnerability Threatens All Versions - Olmec Skip to main content

New Mac OS X Vulnerability Threatens All Versions

By March 31, 2016March 6th, 2023Blog, Cybersecurity

new_mac_osx_vulnerability_threatens_all_versionsIn recent months, Apple has been increasingly on the receiving end of unwanted attention from the hacking community. Apple’s OS offerings have long been touted as being more robust and secure than Microsoft’s Windows, and so far, the company is living up to that reputation. The reality, however, is that given the sheer number of iPads and iPhones in use around the world today, the company is an attractive target for the hacking community.

Security company SentinelOne has recently discovered the latest flaw in Apple’s OS X operating system, which bypasses the SIP (System Integrity Protection) protocols the company has in place to prevent local privilege escalation. SentinelOne describes this non-memory corruption as being stable, extremely reliable, and logic based. It does not crash the machine or process that it takes over, which would give the device’s owner a clue that something was amiss. In short then, this zero day vulnerability is something that is less likely to be used by your run of the mill hacker than it would by nations, sponsoring highly targeted stealth attacks against other nations.

By their nature, zero day flaws are extremely difficult to discover, simply because the engineers who designed and built the devices in question aren’t looking for them. For the same reason, these kinds of flaws are virtually impossible for antivirus software to detect, because the software works by looking for symptoms or virus signatures it can match to the database of known threats.

In any case, so far, Apple has had a stellar track record when it comes to patching vulnerabilities to their system, in many cases, releasing a patch just 48-72 hours after a flaw is discovered. It’s possible then, that by the time you read these words, Apple will already have a fix released, or at least a firm date for it. At this point in time, however, they do not.

Jason Manteiga

Jason J. Manteiga, Vice President of Olmec Systems, has been part of the company for over the past 20 years. He believes that having a great work environment and supportive team, is the ultimate key to success. Since being in the IT realm for over 25 years, Jason, along with Olmec Systems, has been on the Inc. 5000 “List of America’s Fastest Growing Private Companies” and Channel Futures MSP 501 “Top Managed Service Providers in North America,” along with other awards and nominations. Jason earned his Bachelor Degree in Information Systems from the New Jersey Institute of Technology. He also holds certifications in Microsoft MCSE, VMWare VCP, and Cisco CCNA. In his spare time, Jason is a contributor for The Center for Social & Legal Research (Privacy Exchange) and a member of the Morris County Chamber of Commerce. His hobbies include cycling and kayaking. He currently lives in New Jersey with his wife, two daughters and son.