Gatekeeper September 30

AAPL: 110.30

Stock Chart

A security researcher has found an extremely simple way to bypass Gatekeeper to allow Macs to open any malicious app, even when it is set to open only apps downloaded from the Mac App Store.

Patrick Wardle, director of research at security firm Synack, told arsTechnica that once Gatekeeper okays an approved app, it pays no more attention to what that app does. The approved app can then open malicious apps – which Gatekeeper doesn’t check.

Wardle has found a widely available binary that’s already signed by Apple. Once executed, the file runs a separate app located in the same folder as the first one […] His exploit works by renaming Binary A but otherwise making no other changes to it. [He then] swaps out the legitimate Binary B with a malicious one and bundles it in the same disk image under the same file name. Binary B needs no digital certificate to run, so it can install anything the attacker wants … 

expand full story

Gatekeeper August 19, 2014

Yesterday there were a few claims going around that Apple’s recent change to Gatekeeper app signing for developers was the result of a Dev Center security breach. TUAW reported yesterday on a few random tweets and others picked up the story. As you’d probably expect, we have some good news: It’s not true… expand full story

Gatekeeper May 17, 2012

Update: Macworld and The Verge report that Apple will actually not begin rejecting apps that utilize hotkeys. 

According to a report from TUAW, Apple will soon begin rejecting OS X apps submitted to the Mac App Store that utilize hotkey functionality. The report does not cite a specific source, and app developers we have talked to seem to be unaware of the change. TUAW claimed Apple will only allow existing “hotkey apps”, and those released before June 1, to issue future bug fixes. New apps and existing apps that are releasing updates with new features will apparently not be permitted to use hotkeys:

TUAW has been told that Apple will be rejecting all apps with hotkey functionality starting June 1, regardless of whether the new features are hotkey related or not. Basically, if you’re developing one of those apps, an app that assumes you can still add hotkeys, don’t bother submitting it to the Mac App Store.

The June 1 deadline lines up with the latest deadline Apple set for sandboxing Mac App Store apps, which is a new requirement that limits an app’s access to certain areas of the operating system. Apple is pushing sandboxing as “a great way to protect systems and users by limiting the resources apps can access and making it more difficult for malicious software to compromise users’ systems.” It appears it will also prevent apps from using hotkeys.

expand full story


Submit a Tip


Submitting a tip constitutes permission to publish and syndicate. Please view our tips policy or see all contact options.

Powered by VIP