Researchers Detail Multiple Ways to Bypass macOS TCC Privacy Protections
SentinelLabs reported that macOS Transparency, Consent, and Control (TCC) protections can be bypassed through a mix of design weaknesses and unintended behavior, potentially allowing access to data and services that normally require explicit user approval. TCC is Apple’s privacy framework for restricting applications from reaching sensitive resources such as files, microphones, cameras, and other protected user data without consent.
The report describes bypass paths that undermine the reliability of those safeguards, showing that privacy enforcement on macOS can fail even when users expect TCC prompts and policy checks to block unauthorized access. The findings highlight risk for enterprises that rely on native macOS controls to protect sensitive information, and they underscore the need to pair Apple’s built-in privacy model with additional monitoring, hardening, and application control defenses.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
1 event from the most recent confirmed update back to the earliest known activity.
SentinelLabs publishes research on bypassing macOS TCC protections
SentinelLabs published research detailing ways macOS Transparency, Consent, and Control (TCC) user privacy protections could be bypassed by accident and design. The reference does not provide earlier discrete events such as a vendor patch or disclosure timeline.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
1 reference tracked. Mallory keeps watching after this page renders.
See the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
macOS TCC Bypass Vulnerability via VoiceOver Exploitation (CVE-2025-43530)
A critical vulnerability in macOS, identified as CVE-2025-43530, allows attackers to bypass the Transparency, Consent, and Control (TCC) framework, which is designed to protect sensitive user data such as microphone, camera, and document access. The flaw is exploited through the VoiceOver screen reader framework and the `com.apple.scrod` service, both of which possess elevated system permissions. Attackers can leverage this vulnerability to execute arbitrary AppleScript commands and send AppleEvents to any application, including Finder, thereby circumventing TCC security controls without requiring administrative privileges. The attack can be carried out in two primary ways: by injecting malicious code into Apple-signed system binaries, exploiting the system's failure to properly distinguish between legitimate and compromised processes, and by performing a Time-of-Check-Time-of-Use (TOCTOU) attack to manipulate applications between security verification and execution. Successful exploitation grants attackers the ability to access sensitive documents, control the microphone, and execute code without user consent, effectively nullifying TCC protections on affected macOS systems.
Mar 21, 2026
macOS Trust Cache Abuse Lets Standard Users Disable EDR and MDM Tools
Researchers at XM Cyber disclosed a macOS privilege-escalation technique that allows a standard, non-administrative user to disable enterprise security software and invoke privileged functions without administrator credentials or kernel exploits. The attack chain abuses legitimate macOS behavior by combining weakly validated XPC connections, malicious payload injection into Interface Builder NIB files, and a newly described misuse of the kernel code-signing trust cache, which can continue trusting an application's `CDHash` after a legitimately signed app has run. XM Cyber said it successfully used the method to silently unload or permanently deactivate **CrowdStrike Falcon Sensor**, **Kandji MDM**, and a third unnamed EDR product without triggering alerts. Kandji addressed the issue in an updated agent release and assigned **`CVE-2026-39118`**, CrowdStrike reportedly paid a bug bounty and added detections while disclosure continues, and another vendor is developing a patch; XM Cyber also warned that Apple does not plan to remediate the underlying macOS design issue, leaving software vendors to implement their own mitigations.
Jun 25, 2026
macOS Malware Campaigns Shift Toward Infostealers and Social Engineering to Bypass Apple Protections
Threat actors are increasingly targeting macOS users with **infostealers** and distribution-as-a-service models, reflecting a broader “gold rush” in Apple-focused malware development. Reporting highlights macOS stealers targeting browser credentials and cryptocurrency assets (including seed phrases) and notes tactics to evade Apple controls such as obtaining valid Apple developer signatures to bypass *Gatekeeper*; one cited example is *MacSync* being notarized and signed under Team ID `GNJLS3UYZ4`. The same reporting describes ecosystem-scale enablement, including large-scale compromise of WordPress sites for distribution and novel command-and-control approaches such as using blockchain smart contracts (e.g., on **BNB Smart Chain**), alongside paid-traffic abuse (e.g., promoting malicious AI chat content via ads) to push stealer payloads. Separately, a Darktrace-described investigation details a **multi-stage macOS malware** campaign that prioritizes *social engineering* over exploitation to defeat Apple’s **Transparency, Consent, and Control (TCC)** privacy framework. Victims are lured via phishing to open an AppleScript masquerading as a document (`Confirmation_Token_Vesting.docx.scpt`), which displays a fake “Compatibility” error and instructs the user to launch a “Compatibility Wizard” (e.g., using a keyboard shortcut) that effectively tricks them into authorizing execution and granting access. Together, the reporting indicates macOS threats are increasingly succeeding by combining credential/crypto theft objectives with user-prompt manipulation and trust-abuse techniques rather than relying on kernel or sandbox escapes.
Mar 21, 2026