/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fcard%2Fimage%2F662599%2Facfeeeb8-e67d-4fc3-97e8-9cfafb38137e.png)
Well this isn’t good. A bug in Apple macOS High Sierra can let anyone gain admin access to a Mac. To make matters worse, once that access has been gained, an attacker can later log back into the locked device anytime.
Published to Twitter on Tuesday by software engineer Lemi Orhan Ergin, the vulnerability is alarmingly straightforward. The flaw allows someone to create a kind of phantom profile, one that can log into the Mac with admin access, but it won’t show up on an real admin accounts.
Once the phantom account is created, a user simply needs to enter “root” as a username and, without entering a password, hit enter to unlock. Read more…
More about Apple, Security, Hackers, Hacking, and Macos