Subscribe

Microsoft Discovers MacOS Bug That Can bypass SIP

November 1, 2021

The Microsoft 365 Defender Research Team recently discovered a new macOS vulnerability nicknamed “Shrootless” and tracked it as CVE-2021-30892, a vulnerability that can misuse privilege inheritance in macOS ‘System Integrity Protection (SIP) thereby giving room for the execution of arbitrary code with root privileges.

Reportedly, the vulnerability has already been patched in the three supported versions of macOS (Monterey 12.0.1, Catalina with Security Updates 2021-007, and Big Sur 11.6.1) although there are indications that older versions of OS X running SIP including OS X 10.11 and later may still be vulnerable.

When examining how Shrootless works, the first thing to understand is how SIP works. SIP as we have it adds kernel-level that prevent certain files on the disk and certain processes in memory from being changed, even with root privileges.

The bug then takes advantage of the fact that the kernel can modify protected locations as needed, even if root privileges are no longer sufficient to modify important system files.

For more information, read the original story in Arstechnica.

Top Stories

Anthropic says AI now writes over 90% of the code behind Claude

Lenovo bets on a post-VMware world with new multi-hypervisor FX systems

Anthropic launches AI healthcare tools amid OpenAI competition

Apple taps Google’s Gemini to strengthen AI push including Siri upgrade

Canadian startup Kepler launches commercially operational optical satellites

Grok generating non-consensual sexualized images in thousands hourly, researcher finds 

Related Articles

Anthropic says AI now writes over 90% of the code behind Claude

January 14, 2026 Anthropic says that more than 90 per cent of the software powering new versions of Claude is more...

Anthropic launches AI healthcare tools amid OpenAI competition

January 14, 2026 Anthropic is pushing deeper into healthcare with a new suite of AI tools aimed at doctors, insurers more...

Cloudflare threatens to pull out of Italy after €14M Piracy Shield fine

January 13, 2026 Cloudflare’s standoff with Italy has escalated from a regulatory dispute into a high-stakes showdown. The company is more...

Apple taps Google’s Gemini to strengthen AI push including Siri upgrade

January 13, 2026 Apple has struck a multiyear partnership with Google to power key AI features across its ecosystem. Including more...

Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.
Picture of TND News Desk

TND News Desk

Staff writer for Tech Newsday.

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn
Tech News Day is a daily publication featuring key news stories about technology and how it affects businesses.

Follow Us

X-twitter Linkedin-in

Popular categories

Tech News Delivered

New, Relevant Tech Stories. Our selection is done by industry professionals – executives like you who pick the top stories for that day. Our writers summarize them to give you the key takeaways.
Subscribe
© 2025 TECHNEWSDAY. All rights reserved.