Zombieloadattack and force updating MacOS – part 2

Patching your MacOS to the latest version is only a partition solution, it prevents JavaScript exploits via safari. It does not resolve the issues for other browsers for now. When researching I ran into this article that explains a bit more on how this works: https://www.tugraz.at/en/tu-graz/services/news-stories/tu-graz-news/singleview/article/nach-meltdown-und-spectre-tu-graz-forscher-entdecken-neue-sicherheitsluecken0/ Store-to-Leak Forwarding Store-to-leak forwarding also reads pre-loaded data by … Continue reading Zombieloadattack and force updating MacOS – part 2

macOS security – Secure Kernel Extension Loading (SKEL)

Some background first As we get ready to approve kernel extension for our Apple fleet, here is some background on how things evolved. Kernel extension (KEXT) - MacOS kernel combines the features of a microkernel (load the minimum to run the OS separately from other services) and a monolithic kernel (everything needed for the OS, … Continue reading macOS security – Secure Kernel Extension Loading (SKEL)