this post was submitted on 14 Sep 2024
1641 points (99.0% liked)

Technology

60140 readers
2761 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] IsThisAnAI 4 points 3 months ago* (last edited 3 months ago) (2 children)

Yes. The prompt asking you if you wanted to do it or not would come up next. Unless they figured out some sneaky way to do something to avoid using admin.

[–] [email protected] 21 points 3 months ago

Deploy a user-level payload that is auto started on login. The computer is now part of the botnet and can already be used for useful ops. Deploy a privilege escalation payload later if needed.

[–] [email protected] 13 points 3 months ago* (last edited 3 months ago) (1 children)

90% of users when they are presented with the UAC popup when they do something:

"Yes yes whateverrr"

[–] IsThisAnAI -2 points 3 months ago (1 children)

🤷‍♂️ people are going to take the path of least resistance

[–] T156 1 points 3 months ago

It would be trivial to add a "please click 'yes' to the UAC prompt to allow verification" screen, so that isn't really going to stop anyone.

I've seen a bit of office malware in the past that did that, where it had a bunch of images instructing you to enable macros and that.