“Hackers are exploiting a serious zero-day vulnerability in the latest version of Apple’s OS X so they can perform attacks that install malware without requiring victims to enter system passwords, researchers said. As Ars reported last week, the privilege-escalation bug stems from new error-logging features that Apple added to OS X 10.10. Developers didn’t use standard safeguards involving additions to the OS X dynamic linker dyld, a failure that lets attackers open or create files with root privileges that can reside anywhere in the OS X file system. Researchers from anti-malware firm Malwarebytes said a new malicious installer is exploiting the vulnerability to surreptitiously infect Macs.”
Related posts:
Fact checking NSA’s 9/11 claim: U.S. already knew identity of Saudi hijacker
The Horror Every Day: Police Brutality In Houston Goes Unpunished
India’s ultra rich: younger, richer and buying gold
Terror Attacks And Terror Drills: A Series Of Strange Coincidences
Former Mexican President Launches Global Partnership With Pot Advocates
EU Unveils Border Control That Will Act "Even If A Government Objects"
The Words That Sent the Stock Market Tumbling
After seven years, exactly one person gets off the gov’t no-fly list
Chemicals found in Syrian rebel facility were from Saudi Arabia
A Taxing Choice? PAC Checks May Ease the Pain
Wendy McElroy: I Pledge Allegiance to PHRMA
Nigel Farage: Hague should resign as foreign secretary over Syria vote
Study: Economists Willing To Sacrifice Body Parts For Prestigious Journal Publications
Google strengthens Android security with NSA's SELinux; TPM also coming
Report details lives ruined for children put on sex-offender registries