Apple issued an update for its High Sierra desktop operating system on Dirty Audition (2025) Hindi Web SeriesThursday.
Called the "macOS High Sierra 10.13 Supplemental Update," the new update fixes two dangerous bugs in High Sierra, both of which exposed user passwords in some way.
SEE ALSO: Whoops, a hacker found a way to steal your passwords from macOS High SierraNaked Security has a great technical explanation of the first bug Apple fixed with the High Sierra update. In the simplest of terms, with the bug, if you created a new APFS (Apple File System) encrypted volume on High Sierra, and set anything at all as the password hint, then your password was stored as the hint. In plain text.
That means anyone could've gotten your password simply by clicking on the "Show Hint" button.
Interestingly, if you didn't choose anything as your password hint, you were safe.
The bug did require an attacker to have physical access to one's encrypted volume, like a drive on your MacBook or a USB stick. But this is not one of those bugs that requires a highly technical exploit: Apple literally handed out your encrypted disk's password to everyone, with one click of a mouse.
The bug was discovered by security expert Matheus Mariano on Sept. 27, and the collective response it got from experts was one of disbelief.
This Tweet is currently unavailable. It might be loading or has been removed.
If you have an encrypted APFS volume, check whether your password hint displays your password. If it does, we've got more bad news: Fixing this isn't all that simple.
Per Apple's official explanation, you need to install the 10.13 High Sierra update from App Store, backup the data from the affected volume, unmount and erase the affected volume, reformat it as new APFS volume, encrypt it, choose a new password (hint optional), and then restore your data to the volume. Ouch.
Additionally, if you used that same password (the one you used for an affected encrypted APFS volume), you should change that as well.
Thursday's High Sierra update also fixes another nasty High Sierra bug, which we've written about in September. That particular issue allowed a malicious attacker to extract all your keychain passwords with an unsigned app.
While we're glad these bugs are now squashed, we certainly hope we won't see any such glaring omissions in Apple's software in the future.
Topics Apple Cybersecurity
Previous:Unexpected Consequences
The Permanent Vactioner
Rory McIlroy had a very blunt response to Tiger Woods' Christmas outfit
Facebook 'lurking' is making you miserable and here's what you can do about it
Less than 1 percent of Huawei P30 Pro parts come from the U.S.
Plunged Into Darkness
Toddler's adorable reaction to getting adopted has the internet in tears
No one cares about 99% of the photos you take. Not even you.
How to clear out your iCloud storage
The Gray Place
Bitcoin has quadrupled in value in six months
NYT Strands hints, answers for May 24
What we know about Facebook's 'Supreme Court'
Donald Trump just posted his scariest tweet yet
You should cover your phone's selfie camera, too
The Coronation of Macron
'Airbnb Luxe' connects wealthy travelers to extraordinary properties
World cup soccer player Jessica McDonald being reunited with her son is super heartwarming
Oppo's under
Show Workers the Money!
Apple considered fitting a camera in the Apple Watch's wristband
'Quordle' today: See each 'Quordle' answer and hints for August 28, 2023'Quordle' today: See each 'Quordle' answer and hints for August 29, 2023The Words Are EverythingThe Morning News Roundup for September 12, 2014What can — or should — we learn from porn?'Quordle' today: See each 'Quordle' answer and hints for August 28, 2023How Samuel Johnson Celebrated His SixtyHow to save videos on SnapchatThe Morning News Roundup for September 18, 2014How to create a Facebook accountStaff Picks: A Field in England, A Desert in the MindNatty Bumppo, Soviet Folk HeroApple's new iPad Pro will have larger OLED display, report saysWordle today: Here's the answer and hints for August 29Google launches SynthID, an AI image watermark that's invisible to the naked eyeiRobot promises its new Roomba won't smear dog poop all overThe Morning News Roundup for September 9, 2014Robert Lowell’s “Epilogue”The Morning News Roundup for September 5, 2014The Well on Spring Street Closing ceremony delayed because everyone wanted a Simone Biles' selfie Foldable phones will be a short Baby kangaroos scratching each other will make you both happy and itchy Facebook went down for large swath of East Coast Chris Evans and Robert Downey Jr. remember Stan Lee with heartfelt posts Airbnb has removed 2,570 illegal listings from NYC, but housing advocates say it's not enough Hero dad tries to save a goal by pushing over his kid 'Tetris Effect' is a meditative salve for this savage world Russian operatives apparently did not hack the midterm elections PayPal bans Proud Boys, Gavin McInnes, and antifa groups Ezra Miller's 'Fantastic Beasts 2' red carpet outfit turned a whole lot of heads Alex Trebek doesn't think Donald Trump would fare well on an episode of 'Jeopardy!' 'PlayerUnknown's Battlegrounds' is finally coming to PS4 in December Emily Blunt on what it's really like to play Mary Poppins Simone Biles' fierce beach photo started an internet conversation on the male gaze The newly renovated North Korean national zoo has a surprising exhibit When vandals destroyed a couple's pride flag, the neighborhood put up 40 more Man gets stuck between buildings while trying to impress his date Watch Rocket Lab send its first commercial rocket to space Students paint a patchwork of pop culture in parking lot
2.4393s , 8199.0703125 kb
Copyright © 2025 Powered by 【Dirty Audition (2025) Hindi Web Series】,Information Information Network