1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Crooks exploit public bug to plant adware on Yosemite Macs

Discussion in 'CSO' started by RSS, Aug 6, 2015.

  1. RSS

    RSS New Member Member

    A vulnerability in OS X Yosemite that went public last month is being used by cyber criminals to plant adware on Macs, a security researcher said today.

    "As far as we've been able to determine, it just installs adware and junkware," said Thomas Reed, director of Mac offerings at Malwarebytes, a San Jose, Calif. security firm. "It's annoying, but not malicious."

    That's not to say the vulnerability isn't serious: The same group, or others, could easily leverage the vulnerability to infect Macs with more substantial attack code, Reed said.

    MORE ON CSO: Your private data has been indexed by Google

    The vulnerability -- which is Yosemite-specific -- was publicly disclosed last month by German researcher Stefan Esser, who also posted exploit code. According to a Korean researcher who goes by the nickname "beist" on Twitter, the bug had been reported to Apple before Esser revealed the flaw.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page