MacMusic  |  PcMusic  |  440 Software  |  440 Forums  |  440TV  |  Zicos
apple
Search

Researcher Demos Keychain Exploit But Refuses To Help Apple

Wednesday February 6, 2019. 08:12 PM , from MacMost
A security researcher posted a video of a piece of malware he developed that could be used to access parts of a Mac’s Keychain. However, instead of informing Apple of the issue and how to reproduce it so Apple can fix it, he is holding back in protest since Apple does not offer bounties for reporting such bug on macOS.

The exploit itself, while sounding scary, appears to require that malware be downloaded and installed to the Mac, which would mean a compromised machine with or without this exploit. In addition, it can only access local Keychain items, and not the iCloud Keychain which is where users usually store sensitive information like passwords.
https://macmost.com/researcher-demos-keychain-exploit-but-refuses-to-help-apple.html
News copyright owned by their original publishers | Copyright © 2004 - 2024 Zicos / 440Network
Current Date
Nov, Mon 25 - 11:00 CET