Apple fixes macOS security flaw behind Gatekeeper bypass


Apple has addressed a macOS vulnerability that unsigned and unnotarized scriptbased apps could exploit to bypass all macOS security protection mechanisms even on fully patched systems.

If they circumvent automated notarization security checks (which scans for malicious components and code-signing issues), the applications are allowed to launch by Gatekeeper, a macOS security feature designed to verify if downloaded apps are notarized and developer-signed.

Read More…