August 4, 2015

Hackers actively exploiting OS X zero-day to root machines, deliver adware

The attack was unearthed by Malwarebytes researcher Adam Thomas, who analyzed a new adware installer and discovered that his sudoers file had been modified.

“For those who don’t know, the sudoers file is a hidden Unix file that determines, among other things, who is allowed to get root permissions in a Unix shell, and how. The modification made to the sudoers file, in this case, allowed the app to gain root permissions via a Unix shell without needing a password,” Malwarebytes’ Thomas Reed explained.

Read More