Vulnerabilities found in the new MacBook Air equipped with M1
There is no doubt that this is the first security vulnerability discovered that affects Apple Silicon chip devices. The most important thing about
is that this vulnerability can easily call and exploit permissions that do not originally belong to the App.
Generally, Apple's macOS and iOS terminal devices have strict restrictions on App permissions, and security and privacy are also the most praised by fruit fans.
Therefore, whether restricted apps are "left forward kick" or "right whip kick", the security system can prevent them from going out.
But this time, through this vulnerability, the attacker can completely bypass these restrictions, achieve unauthorized access, and read the private data such as photo albums, address books, and even account passwords on the user's device.
Tencent Security Xuanwu Lab said:
theoretically, any malicious App developers can use this vulnerability.
and there are many devices affected by the vulnerability.
Tencent Security Xuanwu Lab said this:
M1 MacBook 2020 (macOS Big Sur 11.0.1), iPhone 12 Pro (iOS 14.2), iPad Pro (iOS 14.2) all have this vulnerability.
The vulnerability also affects previously released devices, including MacBooks based on Intel chips, and other Apple devices that can install apps from the App Store.
About Tencent Security Xuanwu Lab
Finally, I will repeat and supplement the security team that discovered the vulnerability this time.
pays close attention to the friends in the security field, and must be familiar with Tencent Security Xuanwu Lab.
was established in 2014 as one of Tencent's seven professional laboratories.
The laboratory has a brilliant leader: Yu Yang, Tombkeeper, the hacker circle name "TK Master", because of his medical background, he is also honored as the "gynecological master". The leader of
TK and the Tencent Security Xuanwu Lab have superb technology and martial arts, and they often find security vulnerabilities that are difficult for others to find, and they always appear in the letters of appreciation from major manufacturers.
Apple’s vulnerability discovery this time is just the tip of the iceberg of its glorious record.
Previously, Xuanwu Lab also discovered the security research result "BadBarcode" for bar code readers, which is the first in the world to invade the system by launching laser;
found that the "BadTunnel" that affects from Win95 to Win10 is super Vulnerability, received special thanks from Microsoft and a $50,000 reward.
Xuanwu Lab is also one of the core backbones of Tencent's security and even the industry's information security forces.
found the security vulnerabilities of Apple's new core M1 this time, although it is a basic operation, but the speed is really amazing X.
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-