Home / malware OSX.Sudoprint
First posted on 06 August 2015.
Source: SymantecAliases :
There are no other names known for OSX.Sudoprint.
Explanation :
This Trojan exploits the Apple Mac OS X DYLD_PRINT_TO_FILE Local Privilege Escalation Vulnerability.
The Trojan uses this exploit to ensure that the user is not asked for their password for privileged operations by adding the following to /etc/sudoers:
[USER NAME] ALL=(ALL) NOPASSWD:ALLLast update 06 August 2015
