MacOS High Sierra vulnerability was publicly disclosed in an Apple forum weeks ago

While Apple scrambles to issue a software fix for a major macOS High Sierra vulnerability, astute observers are wondering what took the company so long to react — after all, the problem was known about weeks ago. 

It seems that on November 13, a commenter on an Apple developer forum disclosed the very vulnerability that today threw the infosec community into a frenzy. Oh, and it was called out 9 days ago on Twitter as well. 

And just how bad is this security threat? Well, it’s not good. Essentially, it gives anyone with access to an unlocked computer the ability to set themselves as the root user — as well as log back in later to the locked computer at a time of their choosing. Read more…

More about Apple, Hackers, Hacking, Macos, and High Sierra
Source: Mashable | MacOS High Sierra vulnerability was publicly disclosed in an Apple forum weeks ago