Technology News
English Edition

Apple in hot water over Mac security lapse

By NDTV Correspondent | Updated: 5 June 2012 12:40 IST
Apple in hot water over Mac security lapse
Highlights
  • Reports indicate of a possible oversight on Apple engineers' behalf that potentially exposes the user's password in clear-text.
Advertisement
If April was bad for Apple on the security front, May seems to offer little respite. Reports indicate of a possible oversight on Apple engineers' behalf that potentially exposes the user's password in clear-text.

The problem is related to FileVault, the file encryption technology that ships with Apple's Mac operating system, specifically Macs using the FileVault encryption version that shipped pre-Lion. According to David I Emery, who reported the issue on a mailing list, every time the user's FileVault protected home-directory is mounted via the network, the user's password in logged to a file in clear-text.

This type of logging is common when developers are testing code internally, but shipping this in production or user-facing code is unacceptable. This log file, and thus the password, is accessible to any user with root or admin privileges. With access to the password, the root or admin user can now see contents of the user's FileVault encrypted folder.

The issue, first reported on May 5th, affects Mac users who moved their FileVault encrypted folders to Lion from legacy versions of Mac OS X. Users utilizing Lion's Filevault 2 (whole disk encryption) remain unaffected.

As per Emery, the bug was introduced with Mac OS Lion 10.7.3 update in early February. Apple has not released any comment confirming or denying the problem till date.

April saw over 550,000 Macs affected by Flashback trojan, with Apple scrambling to check the spread and release a fix. Later security major Trend Micro released a damning report, citing Apple's poor security record in Q1 2012.
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Apple, FileVault, Mac OS X, Mac OS X Lion, encryption, security

Related Stories

Apple in hot water over Mac security lapse
Comment
Facebook Gadgets360 Twitter Share Tweet Snapchat LinkedIn Reddit Comment google-newsGoogle News

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Samsung Black Friday Sale Now Live With Discounts on Galaxy Wearables
  2. PlayStation Black Friday Deals Now Live in India: See Prices
  3. Vivo S20 Series Launch Date for the Chinese Market Revealed
  4. You Can Now Get Transcripts of Voice Messages on WhatsApp
  5. Realme GT Neo 7 Series With 7,000mAh Battery May Launch in December
  6. Noise Buds Connect 2 With Up to 50 Hours Total Battery Life Debut in India
  7. You Can Now Generate AI Video Backgrounds in YouTube Shorts
  8. Apple iPhone 15 Pro Max vs Samsung Galaxy S23 Ultra: Which is Better?
#Latest Stories
  1. Noise Buds Connect 2 With 10mm Drivers, Up to 50 Hours Total Battery Life Launched in India
  2. Xiaomi 15 Allegedly Listed on BIS Website, India Launch Expected Soon
  3. Samsung's One UI 7 Update Release Timeline for Galaxy S24 Series and Older Models Leaked
  4. Google Messages Rolls Out Merged Camera and Gallery UI, Adds Image Quality Selection in Beta: Report
  5. YouTube Shorts’ Dream Screen AI Feature Upgraded With Video Background Generation Capability
  6. Redmi K80 Pro AnTuTu Score, Display Details Revealed Ahead of Launch; to Get Snapdragon 8 Elite SoC
  7. Vivo X Fold 4 Said to Get Snapdragon 8 Elite SoC, IPX8 Rating; Could See Delayed Launch
  8. Sony Announces PlayStation Black Friday Deals in India; PS5 Gets Rs. 7,500 Discount
  9. Threads Algorithm Updated to Show Users Less Recommended Content
  10. Spotify Tests Video Clips, Author Pages and More Features for Audiobooks
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »