HITBSecConf2017 Amsterdam (April 10th - 14th)
Register Online Now!
You can bypass Apple's space-age security and gain administrator-level privileges on an OS X Yosemite Mac using code that fits in a tweet.
Yosemite, aka version 10.10, is the latest stable release of the Mac operating system, so a lot of people are affected by this vulnerability. The security bug can be exploited by a logged-in attacker or malware on the computer to gain total unauthorized control of the Mac. It is documented here by iOS and OS X guru Stefan Esser.
Is almost nine months long enough to fix a serious security vulnerability that hackers could use to steal passwords and plant malware undetected on computers and smartphones?
You would certainly like to think so, wouldn't you?
Apple has released the latest update for OS X Yosemite, version 10.10.1. It contains a number of fixes and improvements to Yosemite You can find OS X 10.10.1 in the Updates section of the Mac App Store.
This update fixes Wi-Fi issues with Yosemite, as well as connections with Microsoft Exchange servers.
A white-hat hacker from Sweden says he's found a serious security hole in Apple's Yosemite OS X that could allow an attacker to take control of your computer.
Emil Kvarnhammar, a hacker at Swedish security firm Truesec, calls the vulnerability "rootpipe" and has explained how he found it and how you can protect against it.
Many of Windows 10′s best features showed up in Mac OS X years ago, including virtual desktops, Expose-like window management, and a notification center. Mac OS X 10.10 Yosemite has some other ideas Microsoft should copy for version 10 of its own operating system, too.
All operating systems copy from each other, and that’s a good thing. This isn’t about who invented what first — it’s about improving the operating systems billions of people use every day.