Saturday, December 14, 2024
Homecyber securitymacOS Sequoia Update Breaks Multiple Security Tools

macOS Sequoia Update Breaks Multiple Security Tools

Published on

SIEM as a Service

Apple’s latest operating system update, macOS 15, also known as Sequoia, has disrupted the functionality of several prominent security tools.

Users and developers have taken to social media and Mac-focused Slack channels to express their frustration over the issues caused by the update.

Security tools from companies like CrowdStrike, SentinelOne, Microsoft, and others have reportedly been affected, leaving many enterprises and macOS users in a bind.

- Advertisement - SIEM as a Service

Widespread Frustration Among Developers

The release of macOS Sequoia has sparked widespread frustration among developers of macOS security tools.

Patrick Wardle, founder of the Mac and iOS security startup DoubleYou, voiced his concerns about the recurring challenges developers face whenever Apple releases a new update.

“As a developer of macOS security tools, it’s incredibly frustrating to time and time again have to deal with (understandably) upset users (understandably) blaming your tools for breaking their Macs,” Wardle stated. He emphasized the need for Apple to focus more on testing their software rigorously before release. 

The issues appear to stem from changes in the operating system’s network stack, impacting several security products.

A CrowdStrike sales engineer noted in a Slack room for Mac admins that the company had to delay support for Sequoia due to these changes.

“There’s quite a lot going on with the changes in the network stack,” the engineer explained.

Decoding Compliance: What CISOs Need to Know – Join Free Webinar

Companies Scramble to Address Issues

According to the TechCrunch reports, Several companies have quickly responded to the problems caused by the macOS Sequoia update.

CrowdStrike issued a “Tech Alert” to its customers and is waiting for Apple’s update before providing official support.

Despite these challenges, SentinelOne claims to have delivered full support for macOS Sequoia immediately upon its release.

However, a SentinelOne Support account had warned customers not to upgrade their endpoints until they had a supported agent.

After upgrading to macOS Sequoia, ESET also alerted its customers about network connection issues.

Although initial reports suggested compatibility problems, an ESET spokesperson later confirmed that their products are compatible with the new OS.

The issues with macOS Sequoia are not limited to enterprise security tools; individual users have also reported problems.

Security researcher Will Dormann highlighted problems with DNS and firewall operations on Mastodon, while another researcher, Wacław Jacek, noted that the OS firewall could block web browsing access after upgrading.

These disruptions extend beyond security tools, affecting everyday applications like the Firefox browser.

Are You From SOC/DFIR Teams? - Try Advanced Malware and Phishing Analysis With ANY.RUN - 14-day free trial

Divya
Divya
Divya is a Senior Journalist at GBhackers covering Cyber Attacks, Threats, Breaches, Vulnerabilities and other happenings in the cyber world.

Latest articles

Nigerian National Extradited to Nebraska for Wire Fraud Charges

United States Attorney Susan Lehr announced the extradition of Abiola Kayode, 37, from Nigeria...

Dell Security Update, Patch for Multiple Critical Vulnerabilities

Dell Technologies has released a security advisory addressing multiple critical vulnerabilities that could expose...

CISA Issues 10 New Advisories on Industrial Control System Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) has issued ten critical advisories, highlighting vulnerabilities...

FBI Seizes Rydox Marketplace, Arrests Key Administrators

The Federal Bureau of Investigation (FBI) announced the seizure of Rydox, an illicit online...

API Security Webinar

72 Hours to Audit-Ready API Security

APIs present a unique challenge in this landscape, as risk assessment and mitigation are often hindered by incomplete API inventories and insufficient documentation.

Join Vivek Gopalan, VP of Products at Indusface, in this insightful webinar as he unveils a practical framework for discovering, assessing, and addressing open API vulnerabilities within just 72 hours.

Discussion points

API Discovery: Techniques to identify and map your public APIs comprehensively.
Vulnerability Scanning: Best practices for API vulnerability analysis and penetration testing.
Clean Reporting: Steps to generate a clean, audit-ready vulnerability report within 72 hours.

More like this

Nigerian National Extradited to Nebraska for Wire Fraud Charges

United States Attorney Susan Lehr announced the extradition of Abiola Kayode, 37, from Nigeria...

Dell Security Update, Patch for Multiple Critical Vulnerabilities

Dell Technologies has released a security advisory addressing multiple critical vulnerabilities that could expose...

CISA Issues 10 New Advisories on Industrial Control System Vulnerabilities

The Cybersecurity and Infrastructure Security Agency (CISA) has issued ten critical advisories, highlighting vulnerabilities...