SAT News: macOS High Sierra Root Exploit & How to Patch


An exploit was discovered in macOS High Sierra that allowed users to gain admin rights – or log in as root – without a password. This bug was triggered via the authentication dialog box in Apple's operating system that prompts users for an administrator username and password. By simply typing the username 'root,' leaving the password field blank, and hitting 'enter' three times, an attacker could log in as root with administrative privileges.

On Nov. 29, Apple released a patch and urge users to update as soon as possible. That update and more information can be found here.

Unfortunately, this patch can cause authentication issues with file sharing – instructions on how to fix this can be found here.

For more on how to keep your information safe, click here.

Nuspire Insights

Nuspire Infographic

Contact Us