Subscribe

Microsoft Discovers MacOS Bug That Can bypass SIP

November 1, 2021

The Microsoft 365 Defender Research Team recently discovered a new macOS vulnerability nicknamed “Shrootless” and tracked it as CVE-2021-30892, a vulnerability that can misuse privilege inheritance in macOS ‘System Integrity Protection (SIP) thereby giving room for the execution of arbitrary code with root privileges.

Reportedly, the vulnerability has already been patched in the three supported versions of macOS (Monterey 12.0.1, Catalina with Security Updates 2021-007, and Big Sur 11.6.1) although there are indications that older versions of OS X running SIP including OS X 10.11 and later may still be vulnerable.

When examining how Shrootless works, the first thing to understand is how SIP works. SIP as we have it adds kernel-level that prevent certain files on the disk and certain processes in memory from being changed, even with root privileges.

The bug then takes advantage of the fact that the kernel can modify protected locations as needed, even if root privileges are no longer sufficient to modify important system files.

For more information, read the original story in Arstechnica.

Top Stories

Anthropic nears $1 trillion valuation as secondary market demand surges

SpaceX partners with Cursor to expand AI coding efforts

Meta sued over alleged profits from scam advertising on Facebook

Open-source project proposes loop-based architecture for Anthropic’s Claude Mythos

Researchers warn Anthropic protocol flaw could expose up to 200,000 servers to takeover

Anna’s Archive ordered to pay $322M over Spotify scraping case

Related Articles

Anthropic nears $1 trillion valuation as secondary market demand surges

April 24, 2026 Shares in Anthropic are commanding premium valuations on private secondary markets, with investor demand pushing estimates close more...

Rogers launches $95 global plan with unlimited data in 64 destinations

April 23, 2026 Rogers Communications has launched a new $95 per month wireless plan offering unlimited data across 64 international more...

SpaceX partners with Cursor to expand AI coding efforts

April 23, 2026 SpaceX has partnered with AI coding startup Cursor, giving the firm access to large-scale computing infrastructure to more...

Shared Services Canada moves away from desk hoteling ahead of expanded return-to-office

April 23, 2026 Shared Services Canada is abandoning desk “hoteling” for employees in the National Capital Region as it prepares more...

Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.
Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.