MacOS – TheCyberThrone

S1ngularity Attack: A Supply Chain Crisis in npm Packages

Introduction In August 2025, the developer community witnessed one of the most impactful supply chain attacks to date, known as the s1ngularity attack. This incident exploited popular npm packages—particularly the…

PravinKarthik August 29, 2025

FrigidStealer Malware Targeting macOS

FrigidStealer is a newly identified macOS malware that targets users through fake browser updates. This sophisticated malware campaign is attributed to the threat actor TA2727 and leverages advanced techniques to…

PravinKarthik February 23, 2025

XCSSET Malware Targeting macOS

XCSSET is a sophisticated malware targeting macOS users, especially software developers. Discovered by Trend Micro in 2020, XCSSET has evolved significantly and remains a potent threat. This detailed analysis covers…

PravinKarthik February 18, 2025

Apple backports CVE-2024-23296 for older Mac models

Apple has backported a critical zero-day patch to older Mac models running macOS Monterey 12.7.6. The vulnerability, tracked as CVE-2024-23296, was addressed during this year March for newer devices but…

PravinKarthik August 3, 2024

TeamViewer Vulnerability Affecting macOS -CVE-2024-1933

A security vulnerability in TeamViewer has been uncovered, putting macOS users of older versions at significant risk. This symlink flaw could allow attackers to elevate their privileges on a target…

PravinKarthik March 27, 2024

New macOS Vulnerability bypasses SIP

Researchers from Microsoft have discovered a new vulnerability in macOS that allows attackers with root access to bypass System Integrity Protection (SIP) and perform arbitrary operations on affected devices. Dubbed…

PravinKarthik June 1, 2023

Privilege Escalation Bug in macOS and iOS

Researchers have shared their findings regarding six vulnerabilities on macOS and iOS and a new bug class. The new class of privilege escalation bugs is based on the ForcedEntry attack,…

PravinKarthik February 22, 2023

MacOS Gatekeeper Achilles

Microsoft has released the details of a vulnerability dubbed Achilles, tracked as CVE-2022-42821, with a CVSS score of 5.5 found in Apple macOS that could be exploited by threat actors…

PravinKarthik December 22, 2022