Posted on 05/12/2015 5:27:07 PM PDT by Swordmaker
A critical vulnerability in MacKeeper, a controversial security program for Mac computers, could let attackers execute malicious commands on Macs when their owners visit specially crafted Web pages.
MacKeepers developers acknowledged the recently discovered problem and released a fix for it Friday, saying in a blog post that users should run MacKeeper Update Tracker and install version 3.4.1 or later. [Editor's note: We have instructions on how to uninstall the MacKeeper app and how to stop MacKeeper notifications from appearing in Safari.]
MacKeeper registers itself as the handler for a custom URL scheme, allowing websites to automatically call the application through the browser.
(Excerpt) Read more at pcworld.com ...
If you want on or off the Mac Ping List, Freepmail me.
I challenge the members of the Apple ping list to each donate at least $10 each to the latest Freepathon. I HAVE donated $100. Many members of the Apple Ping list are already rising to the challenge. Join them. Let's show the power of the Apple Ping list in supporting Freerepublic!
I once installed a limited version of mackeeper.
One morning my I awloed to find my computer had been shut down.
I checked the logs.....and mackeeper was the culprit
“Controversial” my @$$. Ain’t no controversy about this crapola.
Thanks Sword. I have taken your advice, and have NEVER installed MacKeeper, even though I see it pop up regularly.
Researcher Braden Thomas found an issue in the programs validation of such URLs that makes it possible for attackers to execute arbitrary commands with root privilege when MacKeeper users visit a specially crafted website in Safari. As a proof of concept, he posted a link on Twitter that automatically executes a command to remove MacKeeper when clicked.
Sounds like a condign public service.
bkmk
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.