Bug Allowed Malware to Appear as Apple Software
A researcher at security firm Okta discovered a bug that existed in third-party Mac security programs from Facebook, VirusTotal, Google, and others that could allow malware to appear as legitimate programs code-signed by Apple. The bug is a result of the method the applications use to verify that an executable is properly signed. Some security programs whitelist executables based on their embedded signatures but often do not check every component of the file to ensure the signature is valid. Bleeping Computer provides a list of affected programs here. The NJCCIC recommends users of affected programs apply patches as soon as they become available.