OFFICIAL SECURITY BLOG

We’ve moved! You can now read the latest and greatest on Mac adware and malware at Malwarebytes.

Massive MacKeeper data breach

Posted on December 17th, 2015 at 1:06 PM EST

Kromtech, the developer of MacKeeper, has suffered a major breach that has exposed more than 13 million users’ data.

Chris Vickery, a security researcher who has uncovered a number of similar data breaches in the past, found that a Kromtech database full of sensitive data was accessible over the internet… without any login required.

Read the rest of the story on Malwarebytes Unpacked.

8 Comments

Serious MacKeeper vulnerability found

Posted on May 9th, 2015 at 7:21 AM EDT

I have long advised against using MacKeeper for a variety of reasons (some of which can be found in Ongoing MacKeeper fraud). However, now there’s a new reason to avoid MacKeeper: it has been found to contain a serious vulnerability that can lead to remote code execution through the use of a malicious URL. In non-tech-speak, a hacker can create a link that will, if clicked, result in MacKeeper executing code embedded within the link! Such code could do things like wiping your hard drive clean, uploading data to a remote server, or downloading and installing malware.
Read the rest of this entry »

22 Comments

Ongoing MacKeeper fraud

Posted on November 2nd, 2014 at 11:04 AM EST

Controversy about MacKeeper has been around almost as long as MacKeeper has existed. It is one of the most aggressively-marketed products in the Mac world, and there are numerous accusations that it isn’t useful or even that it is fraudulent. At the same time, you will find a number of positive reviews out there. How do you know what’s true? In this article, I will make the case that MacKeeper, and the company behind it (ZeoBIT/Kromtech), are not to be trusted.
Read the rest of this entry »

82 Comments

Beware MacKeeper

Posted on August 26th, 2011 at 4:13 PM EDT

This article has become rather outdated. Most notably, since it was written, Zeobit has sold MacKeeper to Kromtech. (Although it’s hard to tell, since mackeeper.kromtech.net still redirects to mackeeper.zeobit.com half a year later.) It’s anyone’s guess where MacKeeper will go from here, though I still believe that most of Mackeeper’s functions are either unnecessary or could be done better by free software. I am leaving this article in place mainly for historical record.
Read the rest of this entry »

13 Comments