"a OSX software product"
"from App Store"
"reopen you browser"
We'll be in real trouble if these morons ever learn to proof-read their English. Until then, "please to be fucking off".
Apple has moved to thwart a malware attack that used a legitimate – probably hijacked – developer certificate, by revoking the cert. Check Point wrote up the malware last week, calling “OSX/Dok” “the first major scale malware to target OSX users via a coordinated email phishing campaign”. A hapless user who okayed all the …
"If a user relents and okays the dialogue, the malware gets admin privileges,... traffic interception is supported by the Comodo certificate installed by the malware."
With Apple's walled garden approach, why are apps allowed to gain admin privileges and install certificates? Seems like something included for companies that run their own internal applications, but why is anything that's available from the public app store allowed to do this? Why, in 2017, do apps need Admin privileges still?
Why, in 2017, do apps need Admin privileges still?
Because for some reason the app authors think so highly of their code that any installation MUST be available to all possible users of a system. I fully agree with you - if I were offered an option "only install for yourself" I'd take it every time because that rarely needs admin rights (only if it involves drivers such as screen vid grabbers or audio facilities such as the slightly broken Boom 2).
But hey, we are but lowly users. We only get to give those companies money, it's not like we have any rights to go with it..
The macOS and the vast, vast majority of apps running on it are usually fine without Admin privs. It's the users/techs choice to allow them to install apps, set up printers etc.
Remember, Mac users don't have the same memories regarding security history as Windows users do >sarcasm<