Filippo Cavallarin has found a way to skirt around an Apple security feature that could be leveraged to trick people into downloading a malicious application. The exploit would work like this: An attacker sends a zip file to a victim with a symbolic link that leads to an end point the attacker controls. The attack could be used in one such attack (i.e. tricking users into downloading and running malware) Apple apologized for not getting back to him and says the bug will be fixed in an upcoming release.”]
Source: https://www.cuinfosecurity.com/researcher-finds-new-way-around-apples-gatekeeper-a-12525