OS X Zero-Day Exploit Threatens Massive Mac Attack

Mac users, beware -- the ads you see on the Web could let hackers hijack your device. Malwarebytes has discovered a new zero-day exploit in OS X that lets apps bypass passwords during installation to get root permission through a Unix shell. A new adware installer downloaded by a Malwarebytes researcher modified his sudoers file -- a hidden Unix file that controls access to root permissions. The script exploited the DYLD_Print_To_File vulnerability publicized last month by German security researcher Stefan Esser.

from TechNewsWorld http://ift.tt/1MKX30g