If you use a MacOS High Sierra, then you should know that you are vulnerable to an impending privacy invasion. A Turkish software developer, Lemi Orhan Ergin disclosed recently that the device has a deep security flaw-anyone can have access without worrying about how to bypass the normal password-hassle, by simply entering the login name, ‘root’.
Simply put, no passwords are needed, no quotations, no guess works. Simply type the word and there you have it, a complete access to all the information on the computer!
This is a huge one for the tech giant. A report from USA TODAY reveals that Apple has been fixing the fiasco to prevent an intruder from causing a havoc that could have been prevented.
However, the login cannot be done remotely without an authorised access, which means that a physical contact is needed to break through. Nevertheless, this is still a great flaw. This bug was made public on Tuesday via the Turkish software developer’s handle via twitter. Beyond a shadow of a doubt, it’s unarguable that some people would have taken advantage of Apple’s misdemeanour.
As confirmed today by USA TODAY, the MacBook Pro running MacOS 10.13.1 and the 2015 iMac running the same software are both vulnerable to privacy-penetration from external users, by simply allowing users access to the information by switching to the tab designated for the ‘other user’.
Other than the risk of divulging information to a third party caused by Apple, this also puts the tech giant in a bad light. Imagine having all your files deleted, password changed and probably having no access simply because of flawed-security by a ‘technology giant’. Worse still is having someone steal information remotely because they have access to your computer.
Apple has promised to treat the situation as urgent and has recommended users to disable the root access by religiously following the steps on its support page. The statement read:
‘We are working on a software update to address this issue. In the meantime, setting a root password prevents unauthorized access to your Mac’, Apple said in a statement. Although, it’s not yet determined when users should be expecting to see a software update.
It goes to prove that there are no gurus after all.
To set a new password on your Mac, follow the instructions here:
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behaviour or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional
Always active
The technical storage or access is strictly necessary for the legitimate purpose of enabling the use of a specific service explicitly requested by the subscriber or user, or for the sole purpose of carrying out the transmission of a communication over an electronic communications network.
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
The technical storage or access that is used exclusively for statistical purposes.The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
The technical storage or access is required to create user profiles to send advertising, or to track the user on a website or across several websites for similar marketing purposes.
