[Thread] Security researcher finds Zoom uses a "shady" technique to install its Mac app without user interaction, applying tricks used by macOS malware (Felix/@c1truz_)

Felix / @c1truz_:
[Thread] Security researcher finds Zoom uses a “shady” technique to install its Mac app without user interaction, applying tricks used by macOS malware  —  Ever wondered how the @zoom_us macOS installer does it's job without you ever clicking install? Turns out they (ab)use preinstallation scripts, manually unpack the app using a bundled 7zip and install it to /Applications if the current user is in the admin group (no root needed). https://twitter.com/...



from Techmeme https://ift.tt/2QVz1qL

Comments

Post a Comment

Popular posts from this blog

Microsoft says it has no plans to add more backward compatible titles for Xbox One, but says Project Scarlett will run games from all four Xbox generations (Tom Warren/The Verge)

Image
Tom Warren / The Verge : Microsoft says it has no plans to add more backward compatible titles for Xbox One, but says Project Scarlett will run games from all four Xbox generations   —  No more Xbox 360 and Xbox additions to the catalog  —  Microsoft is winding down new additions to its Xbox backward compatibility catalog. from Techmeme http://bit.ly/2Iw9XkX
Read more

Internal docs: Facebook employees created a test account in 2019 and within days, it was recommended extreme and conspiratorial content, including QAnon Groups (Brandy Zadrozny/NBC News)

Image
Brandy Zadrozny / NBC News : Internal docs: Facebook employees created a test account in 2019 and within days, it was recommended extreme and conspiratorial content, including QAnon Groups   —  In the summer of 2019, a new Facebook user named Carol Smith signed up for the platform, describing herself as a politically conservative mother … from Techmeme https://ift.tt/3b2bRZh
Read more

Local officials, educators, and advocacy groups are frustrated by refusal of ISPs to provide data on how many customers they signed up via low income programs (Cyrus Farivar/NBC News)

Image
Cyrus Farivar / NBC News : Local officials, educators, and advocacy groups are frustrated by refusal of ISPs to provide data on how many customers they signed up via low income programs   —  Months into the school year, the one thing many families have learned is how much they rely on a functioning internet connection to access remote classrooms. from Techmeme https://ift.tt/32sgVSS
Read more