[Thread] Security researcher finds Zoom uses a "shady" technique to install its Mac app without user interaction, applying tricks used by macOS malware (Felix/@c1truz_)
[Thread] Security researcher finds Zoom uses a “shady” technique to install its Mac app without user interaction, applying tricks used by macOS malware — Ever wondered how the @zoom_us macOS installer does it's job without you ever clicking install? Turns out they (ab)use preinstallation scripts, manually unpack the app using a bundled 7zip and install it to /Applications if the current user is in the admin group (no root needed). https://twitter.com/...
from Techmeme https://ift.tt/2QVz1qL
No comments