patrickwardle - Slashdot User

Comment Technical Analysis of the Mac Variant (Score 1) 20

by patrickwardle on Wednesday January 06, 2021 @02:22PM (#60903852) Attached to: Hackers Target Cryptocurrency Users With New ElectroRAT Malware

...if you're interested in more details on the macOS variant see, "Discharging ElectroRAT" https://objective-see.com/blog...

Comment Re:HTTPS? (Score 1) 93

by patrickwardle on Tuesday March 17, 2015 @09:42PM (#49280487) Attached to: Ex-NSA Researcher Claims That DLL-Style Attacks Work Just Fine On OS X

For non-app store downloads, Gatekeeper is supposed to be this check (e.g. the user can say only allow signed apps or only apps from the app store). So yes, any HTTP download can be modified - the vulnerability here, is that Gatekeeper can be bypassed to run the injected unsigned code, even if the user had set Gatekeeper to only allow code from the Mac App Store.

Slashdot Top Deals