Mac users can be spied on by apps unnoticed in the background – and this is despite the fact that Apple intends to use the sandbox method to prevent apps from communicating unnoticed with third parties.
Apple has a new security problem. This time, it’s about people using the latest desktop OS, macOS High Sierra. As the developer and security researcher Felix Krause has found out, third parties can record screen contents without the consent of the user and send them for evaluation. This is possible both for apps with or without sandbox method. This, of course, opens the door to scammers. According to Krause, screenshots can be scoured for sensitive data, for example using an OCR text recognition software, so that, for example, passwords and bank data could be read without authorization.
🔓 Sandboxed Mac apps can record your entire screen at any time, without you knowing.
— Felix Krause (@KrauseFx) February 10, 2018
Apple has already been informed by Felix Krause about the problem. There was no reaction yet. In addition, Krause has published a proof of concept on his blog and explains how easy the screenshot function can be used without the user’s knowledge to spy on it.
Further scenarios according to Krause:
- Read password and keys from password managers
- Read all emails and messages opened on the Mac
- Insight into sensitive source code, API key or similar data
- Insight into personal information about the user, such as bank details, salary, address, etc.
Also Read: Apple Is Probably Going To Kill MacBook Air