of which looks like there is actually a fatal flaw within the current macOS High Sierra 10.13.1, even straight through the login menu when you first start up the computer. This specific severe vulnerability lets hackers — or anyone with malicious intentions — do anything they want as root users as long as they have physical access to the computer.
right now, This specific bug is actually not the be-all along with end-all of exploitable bugs, where you can load up a remote terminal along with just log into a victim’s Mac without leaving the room you’re in. Nope. just for This specific exploit, the attacker is actually going to have to get up close along with personal with the victim’s laptop, meaning the attacker is actually going to have to James Bond his or her way to the victim’s Mac along with be in front of the computer itself.
Apple will likely fix This specific vulnerability in a future security update, although until then, let’s see how of which works.
Step 1: Logging into Root through Boot
A hacker can just start up the machine, literally. When on the login window, they’d click on the “different” option, not an actual user or guest user. For the username, they’d simply input root, along with for the password, of which could be left empty. All they have to do is actually click inside the password box, then hit enter. They may need to hit enter repeatedly until successfully logged in along with on the desktop.
If someone is actually already logged into the computer, a hacker could still use This specific root/passwordless trick to bypass privilege escalation prompts. of which doesn’t need to be through the login window.
Step 2: Looting the System
of which was quick. After getting in, the attacker can quickly install any type of software he or she wants on the victim’s Mac, so long as no one is actually looking. They can also reset passwords, view hidden files, along with anything else you can think of.
right now of which the scary stuff is actually out of the way, of which’s fairly simple to make sure This specific doesn’t happen without waiting for Apple to fix This specific problem.
On your admin account, open a terminal window, then type the line below, followed by pressing enter. The -u argument will unlock the non-existing password allowing you to change the root password.
sudo passwd -u root
If logged into the administrator account, you’ll need to input your admin password first before proceeding. Then, enter a root password, then confirm of which.
within the end, make sure to keep of which root password safe. If you lose of which password, of which will be completely difficult should you need of which, along with you will have to format or go through some extra steps to get complete access back onto your Mac.
Have any questions? Comment below or hit me up on Twitter @Nitroux2.