Dropbox team disclosed three critical zero-day vulnerabilities in Apple macOS, chaining them it is possible to take over a Mac computer. The vulnerabilities were discovered by experts at cybersecurity firm Syndis that was hired by Dropbox to carry out a penetration test on the companys IT infrastructure. Experts were able to chain the vulnerabilities together in a two-stage exploit to achieve arbitrary code execution for a user who visits a specially crafted web page with Safari. The flaws were reported to Apple security team in February and Apple quickly addressed it with the release of March security updates.”]
Source: https://securityaffairs.co/wordpress/78328/hacking/macos-zero-day-issues.html