Unexpected, Unreasonable, Unfixable - Filesystem Attacks on macOS

Explore a 26-minute conference talk from the Objective-See Foundation where independent security researcher Gergely Kalman reveals his year-long investigation into macOS file API vulnerabilities. Learn about the discovery of seven zero-day exploits, including three Local Privilege Escalations to root access, three TCC bypasses, and one sandbox escape - all achieved through logic bugs in the filesystem. Dive into the methodology, techniques, and surprising discoveries that led to successful breaches of major macOS security boundaries from userspace. Understand the seemingly trivial yet powerful bugs that earned significant bounties from Apple, complete with detailed explanations of the filesystem attack vectors and their implications for macOS security.