Intego X9: Why your macOS antivirus should not trust PIDs

blog.quarkslab.com · Mathieu Farrell · 14 days ago · authentication
0 net
Tags
apple exploit privilege-escalation race-condition

This blog post dives into the most common classes of macOS Local Privilege Escalation vulnerabilities, from time-of-check to time-of-use (TOCTOU) Race Conditions and insecure XPC communications to a range of implementation and configuration oversights. We will explore how attackers can exploit these weaknesses to escalate privileges, and highlight real-world examples to illustrate recurring patterns.

← Back to stories