Beware the no quarantine on MacOS apps and binaries downloaded via curl (or wget). Gatekeeper bypass, no quarantine attribute is set. When files are downloaded from the internet in normal fashion they should have the attribute set to enable gatekeeper protection. Bypass! #macos #bypassav #GatekeeperinMacOSX #vulnerability credit to @redcanary https://redcanary.com/threat-detection-report/techniques/gatekeeper-bypass/

Microsoft half Apple, macOS' Gatekeeper zu verbessern

Gatekeeper markiert über den Browser heruntergeladene Dateien, damit macOS vor deren Ausführung warnen oder sie verhindern kann. Klingt einfach, ist es nicht.​

https://www.heise.de/news/Microsoft-half-macOS-Gatekeeper-zu-verbessern-7434470.html?wt_mc=sm.red.ho.mastodon.mastodon.-.-

#Achilles #Apple #AppleDouble #Bug #CVE202242821 #Gatekeeper #GatekeeperinMacOSX #LockdownMode #Malware #Microsoft #Proofofconcept #Security #Sicherheitslücken #macOS #News