Bundles of Joy - Breaking macOS via Subverted Applications Bundles
Offered By: Ekoparty Security Conference via YouTube
Course Description
Overview
Explore a critical macOS vulnerability (CVE-2021-30657) that bypassed key security features like File Quarantine, Gatekeeper, and Notarization in this 40-minute conference talk from Ekoparty 2021. Dive deep into the macOS policy subsystem to uncover the root cause of the bug, examine malware exploiting it as a zero-day, and learn about Apple's patch. Discover novel detection and prevention methods for this vulnerability that allowed attackers to compromise macOS systems with a simple user double-click. Gain insights from security expert Patrick Wardle, founder of Objective-See, as he shares his expertise on macOS security and malware analysis.
Syllabus
Bundles of Joy: Breaking macOS via Subverted Applications Bundles ▪ Patrick Wardle ▪ Ekoparty 2021
Taught by
Ekoparty Security Conference
Related Courses
Case Studies in Embedded VR - Silvio Cesare - Ekoparty Security Conference - 2022Ekoparty Security Conference via YouTube The Making of an Aerospace Village Badge - Dan Allen - Ekoparty 2021: Patagon Aerospace
Ekoparty Security Conference via YouTube IIoT, Data Infrastructure, Smart Factory - Sarka Pekarova - Ekoparty 2021: OT - IIOT - IOT Space
Ekoparty Security Conference via YouTube Gotham City- SSH from Zero to Trust - Lucas Calisi - Ekoparty Security Conference - 2021
Ekoparty Security Conference via YouTube Sleight of ARM- Demystifying Intel Houdini - Brian Hong - Ekoparty 2021- Hardware Hacking Space
Ekoparty Security Conference via YouTube