I have two accounts on my Mac: a standard user account for everyday activities and an administrator account. When I need to do something that requires the admin rights like changing something in the System Preferences or executing a terminal command I just enter my admin credentials and don't switch the account.
I am curious, is it possible for a keylogger that was installed in the scope of my standard user (without admin privileges) to record the admin password when I need to type it with su
and sudo
commands in the terminal or in the System Preferences popup? And do much bigger harm to my system possessing the administrator password? Is my reasoning correct here? Or installing a keylogger without admin rights isn't possible in the first place.
If such malware was indeed installed in the system, will I be able to see it in the Security & Privacy -> Input Monitoring/Accessibility?
Generally speaking, is it secure to always type your admin credentials when you are logged in as a standard user, compared to switching to the admin account completely every time? Thanks!