* Posts by jpaylor

2 publicly visible posts • joined 19 Apr 2011

New Mac scareware variant installs without password

jpaylor
Megaphone

Is this not a BROWSER exploit? Is OSX really to blame?

Exactly how does the application download itself in the first place? I'm assuming it's via a browser, in which case is it not the fault of the browser software for allowing installation of software on the machine without first prompting the user to accept that download, as opposed to it being the fault of OSX for running an application as it normally would once it is installed?

Terrorists stamp on Indy's Kate Middleton jelly bean

jpaylor
FAIL

Works on Twitter Help Center too!

Although not as good, I noticed a few weeks back that the Twitter Help Center uses the same technique and is also open to abuse, for example:

http://support.twitter.com/groups/31-help-for-idiots/topics/109-I-have-no-brain/articles/15367-I-am-incapable-of-carrying-out-a-simple-task