Thursday, October 11, 2018

Apple Macs also have security problems

Apple Macs also have security problems

You can access computers with the High Sierra operating system without password

    Apple is vulnerable and hackers have realized, although the giant of Cupertino has gotten to work to update their devices and end the vulnerability detected in macOS High Sierra, the latest version of its desktop operating system.

"Security is a priority for all Apple products, and unfortunately there has been a stumbling block with this version of macOS," the company said in a statement.

This small open door allows anyone to log in as if they were a user with access to system administration.

    This Tuesday, the developer Lemi Orhan Ergin has raised the alarm on Twitter stating that "anyone" can log on to a computer with this operating system if it identifies with the name "root", leaves the field of the password empty and press the 'Unblock' button several times.

In particular, this access was possible from the 'Users and Groups' menu, within the 'System Preferences' section. There, according to Orhan, who wants to access the computer has to press the padlock icon to change the configuration. In addition, cybersecurity researcher John Bambenek has confirmed that this error can allow a third party to control the computer remotely.

Apple has already stated that it is working on "an update of 'software'" that will solve the problem in statements to the Mashable media. "We greatly regret this error and apologize to all Mac users, both for launching the software with this vulnerability and for the concern it has caused, our customers deserve better, we are auditing our development processes to prevent this from coming back. to happen, "explains Apple.

For the moment, the giant of Cupertino has offered a tutorial through its web page of Support in which it teaches to configure a user of 'root' and a password to access this profile.

To correct the security error of macOS High Sierra, users must access the 'System Preferences' menu, go to 'Users and Groups' and click on the lock icon.

Once done, you must log in with your user data, click on 'Options login session' and then 'Access' or 'Edit'. After that, they must click on 'Open directory utility' and click on the padlock of this new window, to then enter their password.

In the 'Utility directory' menu bar, the user must select 'Edit' and 'Activate root user', and then enter the password they wish to use for the root user.

No comments:

Post a Comment