Critical macOS Vulnerability Lets Hackers to Bypass Apple’s System Integrity Protection

Microsoft Threat Intelligence has uncovered a critical macOS vulnerability that allowed attackers to bypass Apple’s System Integrity Protection (SIP).

Known as CVE-2024-44243, this vulnerability could be exploited to load third-party kernel extensions, resulting in severe security implications for macOS users.

Apple released a patch for this vulnerability as part of its December 11, 2024, security update. The discovery was made in parallel by Microsoft and security researcher Mickey Jin, both of whom responsibly reported the issue to Apple.

What is System Integrity Protection (SIP)?

System Integrity Protection, commonly referred to as SIP, is a foundational macOS security feature designed to restrict system-level operations that could compromise the integrity of the operating system.

By enforcing restrictions even on users with root privileges, SIP helps safeguard macOS devices from unauthorized modifications, ensuring tighter security against malware, rootkits, and other threats.

However, Microsoft’s report highlights the critical risk posed by a ...