Can hackers steal passwords using Mac or Linux users without any crack?
The answer is yes if he has control of the computer.
How is it?
Including users of Mac and Linux use sudo on a daily basis, and hackers take advantage of it and apply social engineering, the laboratory writes a function in the bash language that requests the writing of a password and then saves this password in a file.
Then the hacker changes the sudo in the alias with this function.
When the victim writes sudo, it invokes the malicious function instead of the original sudo.
The hacker can develop the process by checking the password if it is correct or not, and also call the original sudo if the password is correct.
How can I protect myself?
You can know the execution path of any command through the type command, so if you type sudo and write for you
sudo is / usr / bin / sudo
Please know that you are using sudo without modification
But if he said to you
sudo is a job
Be aware that Alias has been tampered with and changed sudo to steal the password