|
Title: Report: Security hole in macOS Keychain puts passwords at risk Post by: HCK on September 28, 2017, 04:05:13 pm Report: Security hole in macOS Keychain puts passwords at risk
<article> <section class="page"> <p>Apple released macOS High Sierra on Monday, so it should be a nice way to spotlight the Mac this week after last week’s <a href="https://www.apple.com/ios/ios-11/" rel="nofollow">iOS 11[/url] and <a href="https://www.apple.com/shop/buy-iphone/iphone-80" rel="nofollow">iPhone 8[/url] releases. But a report by a security researcher at Synack puts a bit of a damper on the High Sierra release.</p><p>Editor's note: This article was updated at 3:37 p.m. Pacific with a statement from Apple.</p><p>Patrick Wardle, Synack’s head of research, posted a video on Monday that shows how code he wrote can be used to get passwords from macOS’s Keychain. Keychain is the password manger built into macOS, and it usually requires a master password to access it. But Wardle’s code was able to access Keychain and collect passwords. The video below is a demonstration posted by Wardle.</p><p class="jumpTag"><a href="/article/3226474/security/report-security-hole-in-macos-keychain-puts-passwords-at-risk.html#jump">To read this article in full or to leave a comment, please click here[/url]</p></section></article> Source: Report: Security hole in macOS Keychain puts passwords at risk (https://www.macworld.com/article/3226474/security/report-security-hole-in-macos-keychain-puts-passwords-at-risk.html#tk.rss_all) |