Η Apple Lossless Audio CODEC (ALAC), released security updates for the operating system system macOS by fixing a loophole in privacy preferences that "may have been actively exploited," according to the company, to allow malicious apps to record the computer's screen.
it is about a great information which has 73 vulnerabilities, including one in the Transparency Consent and Control (TCC) framework, which allows malicious programs to bypass system privacy controls.
TCC displays dialog prompts for security and privacy sensitive actions, such as whether an application captures a computer screen or gives applications access to the camera and microphone.
That's it Jamf security blog posted a bug report and notes that the bypass is already being used by XCSSET malware.
“Η ομάδα ανίχνευσης σημείωσε ότι μόλις εγκατασταθεί στο σύστημα του θύματος, το XCSSET χρησιμοποιούσε αυτήν την παράκαμψη ειδικά με σκοπό τη λήψη στιγμιότυπων οθόνης της επιφάνειας work of the user without requiring additional rights", he said.
In August, Trend Micro found that XCSSET targets Mac developers through infected Xcode projects.
“Κατά τη διάρκεια των δοκιμών της Jamf, διαπιστώθηκε ότι αυτή η vulnerability δεν περιορίζεται μόνο στα δικαιώματα enrollmentof the screen. Many different permissions already granted to the app can be transferred to other malicious apps.”
The UK's National Cyber Security Center (NCSC from National Cybersecurity Centre) released a vulnerability report (CVE-2021-30715), if you want to see more details.
Apple's May 24 updates include Safari in version 14.1.1, which fixes 10 security vulnerabilities that could be exploited by malicious websites.