Apple macOS security protections can easily bypassed with ‘synthetic’ clicks, researcher finds
MacOS is vulnerable is to an attack that can allow hackers to bypass built-in security features aimed at preventing apps from obtaining unauthorized access to user data, the webcam or the microphone.
The security mechanism is designed to force apps to request explicit approval for such access. The user can grant such access by ticking an “allow” popup box. However, a security researcher discovered that it is possible to manipulate a whitelist of approved mac apps that can generate what are called “synthetic clicks” to bypass the security measure.