Hackers debut adware that only affects Mac OS X 10

[zekrahminator]

F-Security labs has discovered how to install adware on Macintosh OS X 10. The adware (called iAdware) loads itself with each program as a system library. The adware only needs copy permissions to install, so it does not need administrator privileges to be installed. Compared to some adware for the PC, iAdware is relatively harmless. The proof-of-concept bug launches a web browser window when any program is launched. F-Secure says that a prompt to install system library files would effectively stop iAdware from installing.

View at TechPowerUp Main Site

 

[Dippyskoodlez]

Problem is, it has to be installed.

And how is that going to be done?

 

[Steevo]

By the same means that idiots install "free" stuff on a PC. A better idiot has been built again.

 

[Dippyskoodlez]

By the same means that idiots install "free" stuff on a PC. A better idiot has been built again.

problem is, installing stuff on OS X involves copying it to your aplication folder, and executing it manually, or running an install program that copys it over for you...

In other words, if the user has to manually execute the exploit, its not an exploit in my book. Just an end user security issue caused by idiots.

yeah, if I open a command window from windows and delete my windows folder, does that mean its a security risk too? (then again, thats why we don't give users a command prompt ability in a networked enviroment... too bad it has to manually disabled too.)

 

[Steevo]

Trust me, it will happen.

 

[Dippyskoodlez]

Trust me, it will happen.

Thats like saying trust me, windows will fail too.

Its impossible to protect against the idiot user...

Which is why i have a job.

Thing is, its much more difficult in OS X to do something that is trivial in windows, with an exploit like this.

You cannot just "add" it to startup, as that prompts for the user password... eliminating that way of executing the file..

so unless the user authorizes its addition, AND manually executes it, it cant be exploited by any known means...



But if the user authorizes it and manually executes it................Its not different than anything else..

 

[jocksteeluk]

CONGRATS SPYWARE MAKERS, you pieces of s**t

 

[newtekie1]

It just has to be copied, which can easily be done using a script file embedded with a "safe" program. The same way the large majority of spyware/adware is installed on PCs. As Apple gets more users, they will get more idiot users, the biggest security flaw affecting Windows.

 

[lemonadesoda]

Agreed. As soon as Apple users get bored of their pre-installed software, start using download sites or P2P and keygens to install (pirate) software, they open thenselves up to this.

I had to laugh at iAdWare, just like I will laught at iVirus, and iDiots.

 

[Dippyskoodlez]

Agreed. As soon as Apple users get bored of their pre-installed software, start using download sites or P2P and keygens to install (pirate) software, they open thenselves up to this.

I had to laugh at iAdWare, just like I will laught at iVirus, and iDiots.

Thing is, aside from limewire.... most mac users don't "want" to find oddball software...... just music..

 

[Muhad]

Adware, viruses and anything else secretly put onto a persons computer needs to be taken more seriously. These clowns that do this need to be sent to prison.:shadedshu

 

[b1lk1]

LOL! Poor Apple users. Looks like your perfect OS is getting the attention it doesn't deserve. Funny how flaws can be found so easily in this perfect OS when people try. Sure this one isn't a major one, but once they start, it will be hacked up like Winblows in no time. HAHAHAHAHAHA!!!!!!!!!!

 

[Dippyskoodlez]

LOL! Poor Apple users. Looks like your perfect OS is getting the attention it doesn't deserve. Funny how flaws can be found so easily in this perfect OS when people try. Sure this one isn't a major one, but once they start, it will be hacked up like Winblows in no time. HAHAHAHAHAHA!!!!!!!!!!

Now if only these flaws didnt involve a large portion of user idiocy to be exploited, unlike windows.......

Again, reading the post helps you fully understand what it is... Its a THEORETICAL flaw, that has yet to actually be exploited. Chances are it will get a patch before anyone has the chance to find a flaw that allows direct exploitation.

The chances of a zero day impacting os x, or windows is still significantly larger on the windows side, so I really don't see your point.

 

[Makaveli]

His point is OS X is finally getting the attention from the spyware monkies. its only a matter of time before it gets worse. And he laughs, cause of all the stupid mac zealots who think there OS is untouchable. As the Mac install base gets bigger, more people will start to expliot it.

 

[zekrahminator]

His point is OS X is finally getting the attention from the spyware monkies.

One problem- It's a security firm who found a potential exploit, not a zombie nerd who is actually exploiting it .

 

[Dippyskoodlez]

One problem- It's a security firm who found a potential exploit, not a zombie nerd who is actually exploiting it .

Exactly. Its like the police breaking into your house when you're not home, through a secret passage way...

Not exactly helpful to someone wanting to do harm

 

[Alcpone]

One problem- It's a security firm who found a potential exploit, not a zombie nerd who is actually exploiting it .

Fair play F-Secure, thats why I use there software, also I got it for free for 48months through my bank!