Menu
Controversial MacKeeper security program opens critical hole on Mac computers

Controversial MacKeeper security program opens critical hole on Mac computers

The program's developers are urging users to update to its latest version as soon as possible

A critical vulnerability in MacKeeper, a controversial security program for Mac computers, could let attackers execute malicious commands on Macs when their owners visit specially crafted Web pages.

MacKeeper's developers acknowledged the recently discovered problem and released a fix for it Friday, saying in a blog post that users should run MacKeeper Update Tracker and install version 3.4.1 or later.

MacKeeper registers itself as the handler for a custom URL scheme, allowing websites to automatically call the application through the browser.

Researcher Braden Thomas found an issue in the program's validation of such URLs that makes it possible for attackers to execute arbitrary commands with root privilege when MacKeeper users visit a specially crafted website in Safari. As a proof of concept, he posted a link on Twitter that automatically executes a command to remove MacKeeper when clicked.

If users have already been asked by MacKeeper for their password during the normal operation of the program, the rogue command will execute automatically. If not, the program will prompt them for their password, but the text on the dialog window can also be altered by the exploit, SecureMac reported.

MacKeeper has been surrounded by controversy for years. Its previous owner, a Ukrainian-based company called ZeoBIT, was accused by Mac users of using aggressive advertising and scare tactics to push its product.

The company is close to settling a class-action lawsuit in the U.S. that sought $5 million in damages because MacKeeper warned users about fake security and performance problems to convince them to pay for the full version. If the settlement is reached, ZeoBIT will put $2 million into a fund for refunds, but won't admit any fault.

In April 2013, ZeoBIT sold MacKeeper to another company called Kromtech Alliance. The program has been downloaded over 20 million times and recently celebrated its fifth anniversary, according to Kromtech.


Follow Us

Join the newsletter!

Or

Sign up to gain exclusive access to email subscriptions, event invitations, competitions, giveaways, and much more.

Membership is free, and your security and privacy remain protected. View our privacy policy before signing up.

Error: Please check your email address.

Tags patch managementpatchesExploits / vulnerabilitiesZeoBitKromtech Alliance

Featured

Slideshows

Reseller News welcomes industry figures for 2019 Hall of Fame lunch

Reseller News welcomes industry figures for 2019 Hall of Fame lunch

Reseller News welcomed 2018 inductees - Chris Simpson, Kendra Ross and Phill Patton - to the third running of the Reseller News Hall of Fame lunch, held at the French Cafe in Auckland. The inductees discussed the changing landscape of the technology industry in New Zealand, while outlining ways to attract a new breed of players to the ecosystem. Photos by Gino Demeer.

Reseller News welcomes industry figures for 2019 Hall of Fame lunch
Upcoming tech talent share insights at inaugural Emerging Leaders Forum 2019

Upcoming tech talent share insights at inaugural Emerging Leaders Forum 2019

The channel came together for the inaugural Reseller News Emerging Leaders Forum in New Zealand, created to provide a program that identifies, educates and showcases the upcoming talent of the ICT industry. Hosted as a half day event, attendees heard from industry champions as keynoters and panelists talked about future opportunities and leadership paths and joined mentoring sessions with members of the ICT industry Hall of Fame. The forum concluded with 30 Under 30 Tech Awards across areas of Sales, Entrepreneur, Marketing, Management, Technical and Human Resources. Photos by Gino Demeer.

Upcoming tech talent share insights at inaugural Emerging Leaders Forum 2019
Show Comments