Apple issued an update for its High Sierra desktop operating system on Uncontrollable Sexual DesireThursday.
Called the "macOS High Sierra 10.13 Supplemental Update," the new update fixes two dangerous bugs in High Sierra, both of which exposed user passwords in some way.
SEE ALSO: Whoops, a hacker found a way to steal your passwords from macOS High SierraNaked Security has a great technical explanation of the first bug Apple fixed with the High Sierra update. In the simplest of terms, with the bug, if you created a new APFS (Apple File System) encrypted volume on High Sierra, and set anything at all as the password hint, then your password was stored as the hint. In plain text.
That means anyone could've gotten your password simply by clicking on the "Show Hint" button.
Interestingly, if you didn't choose anything as your password hint, you were safe.
The bug did require an attacker to have physical access to one's encrypted volume, like a drive on your MacBook or a USB stick. But this is not one of those bugs that requires a highly technical exploit: Apple literally handed out your encrypted disk's password to everyone, with one click of a mouse.
The bug was discovered by security expert Matheus Mariano on Sept. 27, and the collective response it got from experts was one of disbelief.
This Tweet is currently unavailable. It might be loading or has been removed.
If you have an encrypted APFS volume, check whether your password hint displays your password. If it does, we've got more bad news: Fixing this isn't all that simple.
Per Apple's official explanation, you need to install the 10.13 High Sierra update from App Store, backup the data from the affected volume, unmount and erase the affected volume, reformat it as new APFS volume, encrypt it, choose a new password (hint optional), and then restore your data to the volume. Ouch.
Additionally, if you used that same password (the one you used for an affected encrypted APFS volume), you should change that as well.
Thursday's High Sierra update also fixes another nasty High Sierra bug, which we've written about in September. That particular issue allowed a malicious attacker to extract all your keychain passwords with an unsigned app.
While we're glad these bugs are now squashed, we certainly hope we won't see any such glaring omissions in Apple's software in the future.
Topics Apple Cybersecurity
Bargaining For the Common Good
What Ever Happened to Netscape?
Upgrade Your Monitor, Not Your GPU
Does Pixar's 'Elio' have an end
Exceptionally rare radio sources detected in the distant universe
Is Ray Tracing Worth the FPS Hit? 36 Game Performance Investigation
Pride 2025: Major tech companies go silent
4 Years of AMD RDNA: Another Zen or a New Bulldozer?
Hidden Siri Commands and Unusual Responses
How to cancel Amazon Prime
Best IPL deal: Save $80 on Braun IPL Silk·Expert
Is Upscaling Useful at Lower Resolutions? Nvidia DLSS vs Native at 1080p
TechSpot PC Buying Guide: Early 2024
Scientists spotted a giant comet spewing gas 2 billion miles from sun
I'm a college professor. My advice to young people who feel hooked on tech
Testing Nvidia DLSS 3.5 Ray Reconstruction Using Cyberpunk 2.0
Best earbuds deal: Save 25% on the JBL Endurance Race 2 sport earbuds
Upgrade Your Monitor, Not Your GPU
Sony launches new flagship XM6 headphones: Order them now
Bigger Than Godzilla: Why Are Games Using So Many Gigabytes?
Sorry, iPhone fans, the latest Snapchat Bitmoji feature is Android onlyCat dad uses piano to induce feline blissMcDonald's had to be trolling with this Shamrock Shake tweetWhy people can't stop watching pimples and blackheads getting squeezedThis smart jacket from Google and Levi's will cost you $350The augmented reality headset wars have begunAirbus Pop.Up concept shows a new vision of multiAT&T announces new prepaid GoPhone unlimited data planCower in fear at how one monster opens a loaf of breadWatch Scarlett Johansson skewer Ivanka Trump in 'SNL' perfume adStarbucks' new spring cups look kinda like Twitter trollsMarine leader says revenge porn 'allegations undermine everything we stand for'Nature documentarian Sir David Attenborough is now an adorable cartoonThe Women's Strike fizzled because Americans can't stop workingHow NASA found India's longRadioactive boars have taken over towns abandoned after FukushimaRadioactive boars have taken over towns abandoned after FukushimaAirbus Pop.Up concept shows a new vision of multi'The Mashable Show' is going out with a bang at SXSWThe internet slams Steve King's straight Your next Uber ride may come with an in Brexit could make it harder for Irish women seeking abortions in UK Google sued over tracking locations even when 'Location History' is off Tiny, probably grumpy bird looks a whole lot like Bernie Sanders 'Fog of Love': Spice up game night with this wild rom Apple removing Time Travel feature in upcoming watchOS 5 Tech IPOs, already rare, aren't about to start after Brexit 'To All the Boys' is the romcom for girls who thought they'd die alone No, you can't just text your last will and testament to someone, court rules Jack Dorsey says Twitter's 'left Staples, the home of school supplies, just trolled Kris Jenner This viral Twitter story is the perfect reminder that it's never too late to chase a dream These jokes about the Queen's sex life got 100 complaints Netflix is testing ads and people are freaking out 'Stranger Things' star teases a Hopper and Joyce romance in Season 3 24 times 'To All the Boys I've Loved Before' was too cute to handle Can you ID these '00s summer jams from just one video frame? Accio, wand! The 10 most popular 'Harry Potter' spells revealed 8 of the biggest beauty trends in 2016 (so far) EEC fillings appear to confirm 6 new Apple Watch models
2.5335s , 10107.71875 kb
Copyright © 2025 Powered by 【Uncontrollable Sexual Desire】,Wisdom Convergence Information Network