腾讯网

新型macOS TCC绕过漏洞使攻击者可窃取敏感用户数据

研究人员发现macOS存在一个高危安全漏洞(CVE-2025-43530),攻击者可借此完全绕过透明化、同意与控制(TCC)保护机制。该漏洞通过VoiceOver屏幕阅读器框架中的com.apple.scrod服务实现攻击。
腾讯网

XCSSET新变种:专攻苹果macOS用户,实现窃密+勒索

微软威胁情报研究人员发现了一个新版本的macOS恶意软件XCSSET,该变种已被用于有限范围的攻击活动中。趋势科技在2020年首次发现该恶意软件,当时它通过Xcode项目传播,并利用两个零日漏洞从目标系统窃取敏感信息及发动勒索软件攻击。 新变种的技术特征 新版 ...
Houston Chronicle

How to Use AppleScript to Launch Programs

In 1992 Apple Computer began incorporating AppleScript as part of System 7.1, a version of the Classic Macintosh Operating System that predated Mac OS X. This plain-speech scripting language enables ...
MacStories

AppleScript, Automator, and Automation Improvements in Mavericks

I have been using Mavericks for a little while now and I have to admit that I was a little slow to get excited about this release of OS X. Once I started to sink my teeth into some of the power-user ...