Apple apologises, fixes login security flaw through update


San Francisco, Nov 30 (IANS): Apple has reportedly apologised and rolled out an update to fix a major security flaw in its Mac operating system (OS) that lets anyone log into Mac devices running without a password.

"Security is a top priority for every Apple product, and regrettably we stumbled with this release of macOS," The Telegraph quoted an Apple spokesperson as saying late Wednesday.

The latest version of MacOS will automatically download the update.

"When our security engineers became aware of the issue Tuesday afternoon, we immediately began working on an update that closes the security hole. The update is available for download, and starting later today it will be automatically installed on all systems running the latest version (10.13.1) of macOS High Sierra," the tech giant added.

The security flaw affected all Mac devices running the latest version of High Sierra (at least version 10.13.1 - 17B48), according to TechCrunch.

The vulnerability was discovered by Turkish developer Lemi Orhan, who found that the Mac log-in screen can be cracked simply by entering the word "root" as a username and hitting enter twice, without having to enter a password.

  

Top Stories


Leave a Comment

Title: Apple apologises, fixes login security flaw through update



You have 2000 characters left.

Disclaimer:

Please write your correct name and email address. Kindly do not post any personal, abusive, defamatory, infringing, obscene, indecent, discriminatory or unlawful or similar comments. Daijiworld.com will not be responsible for any defamatory message posted under this article.

Please note that sending false messages to insult, defame, intimidate, mislead or deceive people or to intentionally cause public disorder is punishable under law. It is obligatory on Daijiworld to provide the IP address and other details of senders of such comments, to the authority concerned upon request.

Hence, sending offensive comments using daijiworld will be purely at your own risk, and in no way will Daijiworld.com be held responsible.