MacOS High Sierra Bug Lets You Hack Any Mac
One of the security researcher Lemi Orhan Ergin Tweeted about this Mac Vulnerability, where he can access Mac with 'root' username and Blank password.
Dear @AppleSupport, we noticed a *HUGE* security issue at MacOS High Sierra. Anyone can login as "root" with empty password after clicking on login button several times. Are you aware of it @Apple?— Lemi Orhan Ergin (@lemiorhan) November 28, 2017
But Apple have released the security Fix within 24 hours
After the Bug Apple released the following statement:
"We are working on a software update to address this issue. In the meantime, setting a root password prevents unauthorized access to your Mac. To enable the Root User and set a password, please follow the instructions here. If a Root User is already enabled, to ensure a blank password is not set, please follow the instructions from the 'Change the root password' section."
How to Patch?
- Open the App Store.
- Select Updates from the Top.
- Click Update to right of "Security update 2007-001,"
- Your Mac will download the patch to security fix.