Technology News
  • Home
  • Laptops
  • Laptops News
  • macOS 'Migraine' Exploit Capable of Bypassing System Integrity Protection Detected by Microsoft

macOS 'Migraine' Exploit Capable of Bypassing System Integrity Protection Detected by Microsoft

Microsoft identified the exploit in a macOS tool used to migrate data from a Windows PC to a Mac, or from one Mac to another.

Written by David Delima, Edited by Siddharth Suvarna | Updated: 31 May 2023 17:59 IST
macOS 'Migraine' Exploit Capable of Bypassing System Integrity Protection Detected by Microsoft

Photo Credit: Apple

Users who have updated to macOS 13.4 should be protected against the Migraine exploit

Highlights
  • Microsoft detected a flaw that could allow modification of system files
  • System Integrity Protection was first introduced on macOS in 2015
  • Apple has patched the security vulnerability with macOS 13.4
Advertisement

Microsoft recently detected a security exploit that could allow attackers to bypass a core security feature on computers running on macOS. Dubbed "Migraine", the vulnerability can be used to sidestep Apple's System Integrity Protection (SIP) on macOS — a feature that protects parts of the operating system related to system integrity by restricting access to certain files — and install malware on a victim's computer. Microsoft warned Apple about the security flaw and the Cupertino company has patched the flaw with its latest security update.

According to details shared by Microsoft in a blog post, the "Migraine" security exploit relies on Migration Assistant, a tool provided by Apple to allow users to transfer files from one Mac to another or from a Windows PC to a Mac. The Migration Assistant app from Apple has unrestricted root access that allows it to perform its data transfer function, and security researchers at Microsoft leveraged the special 'entitlement' given to the tool, for the exploit.

After modifying the Migration Assistant to run without logging off a user, Microsoft was able to run the tool in debug mode to bypass a signature check. The company used a 1GB Time Machine backup with malicious software, using a script to cause Migration Assistant to import the backup and infect the host system. The entire process bypassed the System Integrity Protection feature that was first introduced on macOS in 2015.

migration assistant no signout microsoft migraine flaw

Microsoft's modified Migration Assistant can function without signing out
Photo Credit: Microsoft

 

It is worth noting that the Migration Assistant is typically available during user setup, which means that an attacker would need to have local access to a machine. Microsoft says that the arbitrary system bypasses like Migraine could create files that are protected by SIP, the same mechanism that it bypasses, making deletion very difficult. Attackers can also run arbitrary kernel code and tamper with the system to enable rootkits. Microsoft adds that these exploits can also be used to gain access to private data as well as computer accessories and devices.

Users who have updated their computers to macOS 13.4 after it was rolled out on May 18 should be safe from the exploit, which has been patched by Apple. Microsoft disclosed the security flaw to Apple, allowing the firm to roll out a fix for the issue. Meanwhile, the company has thanked Microsoft's Jonathan Bar Or, Anurag Bohra, and Michael Pearse for identifying the exploit.

Google I/O 2023 saw the search giant repeatedly tell us that it cares about AI, alongside the launch of its first foldable phone and Pixel-branded tablet. This year, the company is going to supercharge its apps, services, and Android operating system with AI technology. We discuss this and more on Orbital, the Gadgets 360 podcast. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.
Affiliate links may be automatically generated - see our ethics statement for details.
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: macOS, Security Flaws, Microsoft, Apple, Migraine
David Delima
David Delima
As a writer on technology with Gadgets 360, David Delima is interested in open-source technology, cybersecurity, consumer privacy, and loves to read and write about how the Internet works. David can be contacted via email at DavidD@ndtv.com, on Twitter at @DxDavey, and Mastodon at mstdn.social/@delima. More
How To Train Your Dragon Live-Action Remake: Mason Thames, Nico Parker to Play Hiccup and Astrid
'Fascinating and Terrifying': Denmark PM Delivers Speech in Parliament Partly Written by ChatGPT

Related Stories

macOS 'Migraine' Exploit Capable of Bypassing System Integrity Protection Detected by Microsoft
Comment
Share on Facebook Gadgets360 Twitter Share Tweet Snapchat Share Reddit Comment google-newsGoogle News
 
 

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi

Advertisement

Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. OnePlus 13 Tipped to Feature Same Screen Size as the OnePlus 12
  2. JioCinema Premium Plans With Ad-Free 4K Streaming Announced: See Price
  3. Nothing Phone 1 Gets ChatGPT Integration, More With Nothing OS 2.5.5 Update
  4. Flipkart Upcoming Sale 2024: Check out Next Sale Date and Best Offers
  5. Apple iPhone 15 Receives Price Cut on Flipkart: Here's How Much It Costs
  6. iQoo Z9 Turbo, iQoo Z9, iQoo Z9x Launched: Check Price, Specifications
  7. Philips 5000 Series Indoor 360-Degree Security Camera Launched in India
#Latest Stories
  1. Samsung Galaxy Buds 3 Pro Battery Capacity Leaked Ahead of Expected Launch
  2. Apple's 12.9-Inch iPad Air Tipped to Feature LCD Panel Just Like 5th Gen iPad Air Model
  3. TikTok Ban Looms as President Biden Signs Law With 270-Day Sale Deadline
  4. Poco M6 4G Spotted on Several Certification Sites, May Launch Globally Soon
  5. Itel T11 Pro TWS Earbuds With ENC, Up to 42-Hour Total Battery Life Debut in India: Price, Specifications
  6. Philips 5000 Series Indoor 360-Degree Security Camera With Offline Recording Launched in India
  7. Apple's Calculator App to Get a Major Upgrade, Could Be Released on the iPad: Report
  8. WhatsApp Now Supports Face Unlock for App Lock on Pixel 8 and Pixel 8 Pro
  9. Threads Is Testing an Automatic Post Archive Feature to Let Users Hide Old Posts
  10. US Seeks 3 Years Prison for Binance Founder Changpeng Zhao
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »