Apple

TCC Bypass Vulnerability Exposes Sensitive iCloud Data on iOS and macOS

Jamf Threat Labs has uncovered a TCC bypass vulnerability that could have allowed malicious apps to access sensitive user data without triggering any notifications or prompting for consent on iOS and macOS devices.

Jamf Threat Labs recently discovered a significant vulnerability in Apple's iOS Transparency, Consent, and Control (TCC) subsystem on iOS and macOS that could allow malicious apps to access sensitive user data completely unnoticed without triggering any notifications or user consent prompts. The vulnerability, tracked as CVE-2024-44131, impacts the Files.app and FileProvider.framework system processes and exposes users' private information such as photos, GPS location, contacts, and health data. It may also allow potentially malicious apps access to a user's microphone and camera. This exploit can occur completely undetected.

#Apple

Latest News

xBloom

xBloom Studio: The Coffee Maker That Puts Science in Your Cup

6 months ago

Motorola

Moto Watch Fit Priced at $200: Is It Worth the Cost for Fitness Enthusiasts?

6 months ago

iOS

iOS 18's Subtle but Significant Privacy Boost: Granular Contact Sharing Control

6 months ago

Google

Walmart Unveils Onn 4K Plus: The Affordable $30 Google TV Streaming Device

6 months ago

Apple

Judge Forces Apple to Comply: Epic Games' Fortnite Returns Hinge on Court Order

6 months ago

OnePlus

OnePlus Unveils the ‘Plus Key’: Is It Just an iPhone Knockoff or Something Revolutionary?

6 months ago