[Thread] Security researcher finds Zoom uses a "shady" technique to install its Mac app without user interaction, applying tricks used by macOS malware (Felix/@c1truz_)

Felix / @c1truz_:
[Thread] Security researcher finds Zoom uses a “shady” technique to install its Mac app without user interaction, applying tricks used by macOS malware  —  Ever wondered how the @zoom_us macOS installer does it's job without you ever clicking install? Turns out they (ab)use preinstallation scripts, manually unpack the app using a bundled 7zip and install it to /Applications if the current user is in the admin group (no root needed). https://twitter.com/...



from Techmeme https://ift.tt/2QVz1qL

Comments

Post a Comment

Popular posts from this blog

Microsoft says it has no plans to add more backward compatible titles for Xbox One, but says Project Scarlett will run games from all four Xbox generations (Tom Warren/The Verge)

Image
Tom Warren / The Verge : Microsoft says it has no plans to add more backward compatible titles for Xbox One, but says Project Scarlett will run games from all four Xbox generations   —  No more Xbox 360 and Xbox additions to the catalog  —  Microsoft is winding down new additions to its Xbox backward compatibility catalog. from Techmeme http://bit.ly/2Iw9XkX
Read more

An in-depth look at Mike Speiser's investment playbook at Sutter Hill Ventures, who as a founding investor incubated Snowflake Computing as an interim CEO (Kevin/kwokchain)

Image
Kevin / kwokchain : An in-depth look at Mike Speiser's investment playbook at Sutter Hill Ventures, who as a founding investor incubated Snowflake Computing as an interim CEO   —  In Formula 1 racing, you can win a world championship as a driver with one team but then not even make the top 10 without that team's car and infrastructure. from Techmeme https://ift.tt/32Wmt94
Read more

Indian neobank Jupiter raises a $86M Series C at a $711M valuation, up from ~$300M in August, as it prepares to launch lending and wealth management services (Manish Singh/TechCrunch)

Image
Manish Singh / TechCrunch : Indian neobank Jupiter raises a $86M Series C at a $711M valuation, up from ~$300M in August, as it prepares to launch lending and wealth management services   —  Industry veteran Jitendra Gupta's consumer-focused neobank Jupiter has raised about $86 million in a new financing round … from Techmeme https://ift.tt/3myKzQj
Read more