Machiavelli: nice try hacking Mac OS X, but... an attempt to
Makradar Technologies / / December 19, 2019
On the last day of the conference dedicated to information security and held in Las_Vegase, Black Hat, Independent researcher in the art Dino Dai Call (Dino Dai Zovi) submitted his Machiavelli rootkit for Mac OS X. At this point the operating system has not yet been hacked by a malicious program. But this is another Experimental demonstration of how a product can be written for the Mac platform.
Following the principle of "divide and rule" and being disguised as a remote procedure call technology, Machiavelli virus sneaks into The Mach - the core of the operating system - the foundation of Mac OS X. The program establishes a virtually invisible to the user's local agent, which the hacker can control via the network. However, the establishment of a rootkit requires administrative rights, and any reasonable user is unlikely to introduce the admin password on request unknown to him the application. Thus even the Dai Zovi not insisted that he had found a weakness in Mac OS X. With the help of Machiavelli, he just showed that when favorable circumstances can take remote control of the operating system by using the virus.
attempt to implement the planned schedule rootkit at the conference failed, but those who interested in this issue will soon be able to download and install a trial version of the rootkit for experiments.
Himself Dai Zovi plans to release additional tools: iChatSpy (for recording conversations in iChat), SSLSpy (for control over the SSL protocol) and iSightSpy (to take pictures using a webcam integrated into the Notebook Apple). He previously let you know when these tools can be downloaded for testing.