This morning, a serious vulnerability was identified for Apple’s Mac computer products. If you have recently upgraded to the latest version of their operating system ( High Sierra) you need to be aware of how you’re impacted and what steps you can take to resolve the issue.

As a result of the vulnerability, anyone can gain full system access rights to your computer with no password. By default the ‘root’ administrator account should be disabled or protected with a strong password but it seems that the latest operating system release has accidentally left it enabled. In effect by executing this bug, it would allow anyone with physical access to your computer to get full access to all of the information stored on the device. The vulnerability only affects computer products, so you needn’t worry if you only have an iPhone or an iPad.

As a result of the vulnerability, anyone can gain full system access rights to your computer with no password.

There’s no patch at the moment, but hopefully Apple will release it soon. There is however a manual fix, which is as follows:

  1. Click the Apple logo in the menu bar and select System Preferences (or search for it in Spotlight).
  2. Click Users & Groups.
  3. Click the padlock icon in the lower-left corner.
  4. Enter the password for your username.
  5. Click Login Options.
  6. Click Join or Edit next to Network Account Server.
  7. Click Open Directory Utility…
  8. Click the padlock icon in the lower-left corner and enter your password once more.
  9. In the menu bar, click Edit and select Enable Root User. If root user is already enabled, click Change Root Password…
  10. Enter a secure password and enter it a second time to verify.
  11. Click OK to finish.

For our Secure IT (retained) clients we will be working with you over the next few days to make sure you’re protected. For everyone else, feel free to get in touch if you need advice or support on this or any other security issue. You can reach us at any time at info@marclay.co.uk or by calling us on +44(0) 203 0393394