Initially, Henze refused to share details of his hack with Apple, telling media outlets that it was because the company does not have a bug bounty program for macOS. Apple patched the flaw that KeySteal was exploiting at the end of March. Dubbed KeySteal, the attack called attention to the fact that the macOS keychain makes a very attractive target for hackers. "You know, the ones 'securely' stored so that no one can steal them :)" he wrote. In early February, an 18-year-old German security researcher named Linus Henze demonstrated a macOS attack that would allow a malicious application to grab passwords from Apple's protected keychain.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |