Proof-of-Concept Adware Program for OS X?

On Thursday, antivirus firm F-Secure published a brief analysis of a proof-of-concept adware program for the Mac OS X that could theoretically hook into any application to run attacker-specified code. The program, dubbed IAdware by F-Secure, could be silently installed in a user’s account without requiring administrator rights. “We won’t disclose the exact technique used here – it’s a feature not a bug – but let’s just say that installing a System Library shouldn’t be allowed without prompting the user,” stated F-Secure in the blog post. “Especially as it only requires copy permissions.” My take: I’d say, hand over the code, then we’ll talk.

23 Comments

  1. 2006-11-24 8:21 pm
  2. 2006-11-24 8:54 pm
  3. 2006-11-24 8:54 pm
  4. 2006-11-24 9:03 pm
    • 2006-11-25 6:22 am
  5. 2006-11-24 9:25 pm
  6. 2006-11-24 9:43 pm
    • 2006-11-27 6:37 am
  7. 2006-11-24 9:53 pm
    • 2006-11-25 4:16 am
  8. 2006-11-24 10:33 pm
    • 2006-11-24 11:31 pm
  9. 2006-11-24 10:37 pm
  10. 2006-11-24 11:09 pm
  11. 2006-11-25 12:03 am
    • 2006-11-25 5:07 pm
  12. 2006-11-25 12:19 am
  13. 2006-11-25 12:22 am
  14. 2006-11-25 1:05 am
  15. 2006-11-25 8:07 am
  16. 2006-11-25 12:31 pm
  17. 2006-11-25 4:57 pm
  18. 2006-11-26 10:57 am