- Jun 9, 2013
- 6,720
Adware installers hit a new low, will take over your mouse
After earlier this month Malwarebytes detected an adware installer using a zero-day bug in OS X, the cyber-security firm is now also reporting that the same adware installer is now illegally accessing the Mac Keychain by a very clever trick.
The adware installer, created and distributed by Israeli company Genieo, was caught by one of Malwarebyte's researchers using a loophole in new error logging features introduced in Mac OS X 10.10.4 to allow itself to put adware or malware on the user's workstation without needing a root password.
While this zero-day exploit was not present in the newer El Capitan, Apple fixed it quite quickly to avoid any further problems, especially after it was publicly disclosed.
Now, Genieo has come up with another trick that allows them to install their adware on users' Macs, and this one uses features present in the operating system to assist users with disabilities.
Full article. Adware Accesses the Mac Keychain by Faking a User's Click
After earlier this month Malwarebytes detected an adware installer using a zero-day bug in OS X, the cyber-security firm is now also reporting that the same adware installer is now illegally accessing the Mac Keychain by a very clever trick.
The adware installer, created and distributed by Israeli company Genieo, was caught by one of Malwarebyte's researchers using a loophole in new error logging features introduced in Mac OS X 10.10.4 to allow itself to put adware or malware on the user's workstation without needing a root password.
While this zero-day exploit was not present in the newer El Capitan, Apple fixed it quite quickly to avoid any further problems, especially after it was publicly disclosed.
Now, Genieo has come up with another trick that allows them to install their adware on users' Macs, and this one uses features present in the operating system to assist users with disabilities.
Full article. Adware Accesses the Mac Keychain by Faking a User's Click