Adware penetrates OS X

By

Proof-of-concept code could run without user knowledge.

Adware penetrates OS X
Security researchers have found proof-of-concept code for an adware program that targets Apple's OS X operating system.

According to security firm F-Secure, the application does not target a security flaw or bug in the operating systems code. Instead, the adware installs itself through a feature in OS X that allows system libraries to be installed without notifying the user.

While installers require user permission to run in Mac OS X, system library files can be copied onto a machine without ever prompting the user for permission, according to David Frazer, F-Secure's director of technology services.

"It can be seamlessly installed," Frazer told vnunet.com. "When you install the library it doesn't require administrator rights."

The proof of concept that F-Secure tested would automatically launch a browser window every time the user opened an application. It could potentially be used to expose users to unwanted advertisements.

F-Secure has not released details about how the exploit works or what components it targets in the hope that Apple will fix the issue before any malware reaches the public.

"The idea behind this is that there is a vulnerability that right now isn't exploited as such, but it has the potential," said Frazer.

The company hopes that Apple will issue an update for Mac OS X that will force the system to get user permission before it installs system libraries on the machine.

F-Secure's posting comes in a month that has seen the release of several other pieces of proof-of-concept code targeting Mac OS, challenging the common notion that Apple's operating system is less vulnerable to malware attacks.

"For a long time now Mac users have had the feeling that malware is only going to the PC market. This could potentially open the risk for scams that Mac users never see," said Frazer.

Apple did not return requests for comment.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
adwareossecurityx

Sponsored Whitepapers

Protect APIs. Protect Your Business.
Protect APIs. Protect Your Business.
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Modern Identity for SAP and Beyond: Replace SAP IDM with Saviynt
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Saviynt Simplifies GRC and Access Control for SAP and Beyond
Futureproof Your Business with Datacom, Microsoft, and AMD Ryzen™ AI PCs
Futureproof Your Business with Datacom, Microsoft, and AMD Ryzen™ AI PCs
See everything. Do more.
See everything. Do more.

Events

Most Read Articles

Victoria's first government tech chief steps down

Victoria's first government tech chief steps down
SA Water plans 'once-in-a-generation' core technology uplift

SA Water plans 'once-in-a-generation' core technology uplift
NSW Police to embark on $126m IT overhaul

NSW Police to embark on $126m IT overhaul
Ex-student charged over Western Sydney University cyberattacks

Ex-student charged over Western Sydney University cyberattacks
techpartner.news logo
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Dave Stevens on Brennan's evolution and the need for Aussie tech unity
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
Sydney's ITKnocks on contact centre AI and the slow death of the IVR
"It's an exciting time to be part of the health and aged care sector"
"It's an exciting time to be part of the health and aged care sector"
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Insicon founder Matt Miller on the coming 'tsunami' of compliance and educating boards about cyber security
Orro claims Australia first with managed digital asset discovery service
Orro claims Australia first with managed digital asset discovery service

Log In

  |  Forgot your password?