#MacOS gives users full admin rights without password - https://www.itnews.com.au/news/macos-gives-users-full-admin-rights-without-password-478686

Be safe out there...
#macOS #HighSierra

https://thenextweb.com/apple/2017/11/28/macos-high-sierra-has-an-embarrassing-bug-that-gives-anyone-admin-access/

A freshly discovered authentication security flaw in macOS High Sierra is potentially leaving your personal data at risk. Mac users who have not disabled guest user access or changed their root passwords are currently open to this vulnerability. #macOS #Security #Vulnerability

User Tweets significant security issue with macOS High Sierra to Apple Support

A user on Twitter has revealed a major security issue inside macOS High Sierra that could give anyone root access to Macs running High Sierra.

#Apple #MacOS #HighSierra #Security #AppleSupport

#CyberSecurity #MacOS: "Wow, this is a bad one. On Macs running the latest version of High Sierra — 10.13.1 (17B48) — it appears that anyone can log in just by putting “root” in the user name field. This is a huge, huge problem. Apple will fix it probably within hours, but holy moly. Do not leave your Mac unattended until this is resolved.

The bug is most easily accessed by going to Preferences and then entering one of the panels that has a lock in the lower left-hand corner. Normally you’d click that to enter your user name and password, which are required to change important settings like those in Security & Privacy.

No need to do that any more! Just enter “root” instead of your user name and hit enter. After a few tries, it should log right in. There’s no need to do this yourself to verify it. Doing so creates a “root” account that others may be able to take advantage of if you don’t disable it."