After a Turkish software developer publicly revealed via Twitter that he uncovered a massive security bug in Apple’s latest operating system, macOS High Sierra, Apple has now released a fix.
The security flaw allows anyone using a Mac machine admin access just by clicking ‘other’ on the login screen and using ‘root’ as username without the need for a password.
The software developer said, access to the computer can equally be achieved by using the username ‘root’ via System Preference where normally, changing essential settings on locked Mac devices needs the user to enter their login details.
The bug looks present in macOS High Sierra 10.13.1, which is the current version as well as in the macOS 10.13.2 beta. However, the bug doesn’t affect older versions of macOS, such as Sierra or El Capitan.
This does not go down well for those using the latest release of macOS. If the problem is left unattended, it could leave users system administrator without any authentication, even when accessed remotely, revealing sensitive information.
Apple has now fixed the biggest MacOS High Sierra security problem
Apple has finally released a fix for macOS High Sierra issue, so you can implement it now. To do this, go to Mac App Store and click on ‘Update.’ Choose the security update (2017-001) and then click ‘Update.’
You may also like to follow the steps highlighted below to make sure you have the root account with the password you have set. Meanwhile, Apple has apologized for the security lapse. Apple doesn’t usually make an apology like this, and considering the speed at which Apple fixed the issue, it means the security flaw is really serious.
So the fix is here, and you can apply it right now.