foxidrive
Retired Admin
German coder Stefan Esser last month published details of a vulnerability introduced in the latest release of the Mac OS X operating system Yosemite 10.10.
The flaw leaves open the ability for a hacker to create and open files "anywhere in the file system" and gain administrative access to a victim's Mac, potentially wreaking all kinds of havoc.
Some nasty person has now gone and exploited the flaw to automatically install adware on victims' computers. Adware spams an affected computer with pop-up ads or automatically redirects them to unsolicited websites and apps.
Malwarebytes researcher Adam Thomas discovered the use of the exploit when he took a close look at a new adware installer and noticed some of his computer's root files had been messed with.
Apple has reportedly added a temporary measure which notifies users if the adware tries to install itself on their computers, though according to The Guardian's Alex Hern it won't be issuing a full fix for Yosemite users until September.
Read more: http://www.smh.com.au/digital-life/consumer-security/newly-discovered-mac-malware-tarnishes-apples-security-credentials-20150804-girrle.html