Apple’s macOS Gatekeeper, a cornerstone of the operating system’s defense against malicious software, has undergone significant macOS Sequoia (15.0) updates to address emerging security challenges. Developers submitting apps to Apple’s notary service receive a ticket stapled to their software, which Gatekeeper cross-references during execution. Gatekeeper, introduced in 2012 with OS X Mountain Lion, operates as a gatekeeper-literally-for software execution on macOS. The notarization process became mandatory for all third-party software in macOS Catalina (10.15) and remains critical for seamless installation. Apple’s tightening of Gatekeeper policies reflects a broader industry trend toward mandated software provenance checks. MacOS Sequoia brings another critical change for organizations: the deprecation of the spctl A command-line tool for managing Gatekeeper. Apple’s notarization mandate has reshaped macOS software distribution. The most notable change in macOS Sequoia is the removal of the long-standing Control-click (right-click) override option for untrusted software. When extracted, macOS treats the linked directory as a trusted network share, allowing unsigned executables to run without Gatekeeper prompts. Gatekeeper remains a pivotal but not solitary component of macOS security. If an app fails these checks, macOS blocks it unless the user explicitly overrides the restriction, a process Apple has made progressively more deliberate. Still, this workflow redirects to System Settings > Privacy & Security, where users must manually approve the software. This procedural shift reduces inadvertent malware execution by forcing users to navigate through dedicated security menus rather than relying on contextual shortcuts.
This Cyber News was published on cybersecuritynews.com. Publication date: Fri, 16 May 2025 17:00:04 +0000