https://www.linkedin.com/pulse/warning-microsoft-apps-macos-allows-hackers-spy-sgfwe
Security researchers have discovered vulnerabilities in several popular Microsoft applications for macOS that could have allowed hackers to access your camera and microphone without your knowledge.
The affected apps include Microsoft Teams, Outlook, Word, PowerPoint, Excel, and OneNote. While Microsoft considers the exploit a “low risk,” some versions remain unpatched.
Here’s how it worked: Hackers could inject malicious code into these Microsoft apps, bypassing Apple’s security measures and gaining access to sensitive resources like your camera and microphone.
Normally, Apple’s macOS security requires user consent for apps to access these resources. However, the vulnerabilities allowed attackers to bypass this process entirely.
Thankfully, Microsoft has already patched Teams and OneNote to address the issue. However, users of Excel, PowerPoint, Word, and Outlook are still potentially vulnerable.
While Microsoft downplays the risk, security experts warn that users may have unknowingly granted permissions to these productivity tools, making them prime targets for exploitation.
This incident highlights the importance of staying informed about security updates and applying them promptly. Additionally, users should be cautious about granting permissions to applications, especially those that seem unnecessary for the app’s intended function.
Here are some takeaways:
- Update your Microsoft apps for macOS, especially Teams and OneNote.
- Be mindful of the permissions you grant to applications.
- Stay informed about security vulnerabilities and updates.