A developer has found a vulnerability that allows an attacker to bypass privacy protections in macOS Mojave and later versions of the operating system. The exploit was discovered by a macOS developer named Jeff Johnson in September 2019 but hadn’t been disclosed to the public until late June 2020. The reason for this gap is that the enthusiast reported his findings to the Apple Security Bounty Program the day it was launched in an attempt to get a reward.

Whereas Mac computers generally boast smooth performance and hassle-free interoperability between their software and hardware components, sometimes things slip out of users’ control. This can be the case with WindowServer, a service built into macOS that’s responsible for rendering things on the display. It may suddenly start using up most of the computer’s CPU and RAM resources. Read this article to learn how to go about solving this problem.

Ransomware is far less common in the macOS environment than threats like adware and scareware, and yet such detrimental cybercriminal campaigns are exploding once in a while. EvilQuest, the latest Mac ransomware spreading through contagious pirated apps, stands out from the rest. In addition to encrypting a victim’s files, it pilfers some of them. What’s worse, the attackers appear to provide no viable way of decrypting the data even if the ransom is paid.

Macs are made inherently flexible when it comes to performance, and there is usually no need to opt for anything third-party – ideally, the operating system copes with the task autonomously. If there are processes that siphon off too much memory, macOS identifies the hogs and triggers kernel_task process that performs the intelligent balancing. But what if this routine goes wrong and said entity is constantly eating up the CPU? Read more to find out.

The “nobleman” theme continues to be the trend in the cybercrime ecosystem that exploits Mac computers via a massive web traffic redistribution scheme. The Search Baron browser hijacker, which splashed onto the scene in July 2019, has been superseded by Search Marquis culprit. Both act in a similar fashion, forwarding the victims to Bing in the long run. Here’s a full security report on this new infection.

Apple is bridging the gap between its proprietary biometric authentication features and websites for a seamless sign-in experience not relying on passwords. Those using an iPhone, an iPad, or a MacBook with the Touch Bar onboard should be familiar with the Face ID and Touch ID features. They enable biometric authentication to log into applications so instead of the traditional username and password combo. Apple is planning to extend the use cases of these mechanisms far beyond apps and services.