Apple rolls out fix for MacBook's security flaw

Share

But he found that, until he rebooted, he could even then type "root" without a password to entirely bypass High Sierra's security protections.

It is only second time Apple has forcibly updated users' machines and comes in response to widespread concern that millions of Mac computers were at risk, the report said.

Chethan Kamath’s post on November 13 about the “root” bug on Apple’s developer forum
Chethan Kamath’s post on November 13 about the “root” bug on Apple’s developer forum

This morning, as of 8 a.m., the update is available for download, and starting later today it will be automatically installed on all systems running the latest version (10.13.1) of macOS High Sierra. "Are you aware of it @Apple?" the user tweeted. "I can't think of anything worse that has been shipped by a major operating system in the past decade".

The solution is a simple one - but one that has not been made sufficient clear by Apple. That would permit unfettered access to the file system for a Mac, exposing private documents on that particular computer. "If a Root User is already enabled, to ensure a blank password is not set, please follow the instructions from the "Change the root password" section".

Partial implosion of Pontiac Silverdome
City officials told FOX 2 they aren't sure if they will try again on Sunday to set off the remaining charges. In a way, this was the ideal metaphor for the Lions and their former home, the Pontiac Silverdome.

The serious vulnerability has been identified as CVE-2017-13872, which has been fixed by Apple through Security Update 2017-001 for macOS 10.13.1 on Wednesday. A new report from Wired has revealed that users who were still on macOS High Sierra 10.13 - and installed the rushed security patch for the root exploit - saw the effects of the patch completely undone by upgrading to macOS High Sierra 10.13.1. "Never mind one from a security and privacy-conscious company such as Apple", Steve Troughton-Smith, a Mac software developer, wrote on Twitter. The flaw allowed a user to gain admin access to the PC without the owner's password just by using "root" as the user name and clicking the unlock button two times to get in.

"Oh my god that should not work but it does", another user responded yesterday on the forum.

Soon WhatsApp Group Admin Can Stop Other Members From Posting
The report said that WhatsApp group administrator will soon be able to restrict the activities of the other group members. According to WABetaInfo , an app tester has submitted the concept of " Restricted Groups " in this app for the first time.

Several experts have lambasted Apple for allowing the vulnerability in the first place.

In the case of a fix for this latest vulnerability, "I would imagine [Apple] will be pushing it out as a high priority", Cluley said.

Cipher Capital LP Acquires New Position in Activision Blizzard, Inc. (ATVI)
On average, equities analysts anticipate that Activision Blizzard will post $2.00 earnings per share for the current fiscal year. Activision Blizzard, Inc . has a beta of 1.42, offering the possibility of a higher rate of return, but also posing more risk.

Apple seems to be doing badly in ensuring Macs are secure.

Share