Lokhu kuxhaphaza kutholakele yinkampani yakwaMalwarebytes, engenye yezindawo ezihlonishwa kakhulu mayelana nocwaningo lwesoftware enonya, isho isitatimende ukuthi ithole isifaki se-malware okungasizakala ngezici ezintsha zokungena ngamaphutha ezethulwe kunguqulo yakamuva ye-OS X.
Ngokuqondile, uzothola izimvume zezinga lempande ngokuguqula ifayili lokumiswa kwesudo le-Mac okukhulunywa ngayo, ukushiya kungavikelekile futhi kuvulekile ukufaka i-adware efana ne-VSearch, ukuhlukahluka kwe-Genieo, ne-MacKeeper.
Sikushiyela izimemezelo ezingokoqobo zama-Malwarebyte ngezansi:
Njengoba ukwazi ukubona kumazwibela ekhodi aboniswe lapha, iskripthi siyaqhuma ukuba sengozini kwe-DYLD_PRINT_TO_FILE ebhalela ifayili bese ilisebenzisa. Ingxenye yokuguqulwa iyasuswa lapho isiqedile ukubhala kufayela.
Ingxenye eyisisekelo yalokhu kuguqulwa ilele kufayela le-sudoers. Iskripthi senza ushintsho oluvumela imiyalo yeShell ukuthi iqhutshwe njengezimpande kusetshenziswa iSudo, ngaphandle kwesidingo esijwayelekile sokufaka iphasiwedi.
Iskripthi sisebenzisa isimilo esisha se-Sudo sokungenazinjongo ukwethula uhlelo lokusebenza lwe-VSInstaller, olutholakala enkombeni efihliwe kusithombe sediski sokufaka, silunikeze izimvume ze-superuser futhi ngaleyo ndlela sikwazi ukufaka noma yini noma yikuphi. (Lolu hlelo lubhekele ukufakwa kwe-VSearch adware.)
U-Ars Technica ubike okokuqala ngalesi bug esitholwe ngu umcwaningi uStefan Esser ngesonto eledlule, bethi onjiniyela abakwazanga ukusebenzisa imigomo ejwayelekile yokuphepha ye-OS X nge-dyld. U-Esser uthe ukuba sengozini kukhona enguqulweni yamanje ye-Apple ye-OS X 10.10.4 nasezinguqulweni zakamuva ze-beta ze-OS X 10.10.5, hhayi ku-OS X 10.11.