Apple macOS High Sierra Exploit Lets Hackers Steal Keychain Passwords in Plaintext

https://thehackernews.com/2017/09/macos-high-sierra-keychain.html

Apple macOS High Sierra Exploit Lets Hackers Steal Keychain Passwords in Plaintext

This article talks about the following: Apple rolled out a new version of its macOS operation system and a few hours before a hack publicly disclosed the details of critical vulnerability that affects Sierra as well as all earlier versions of macOS, Patrick Wardle the hacker found a critical zero-day vulnerability in macOS that allows any installed application to steal usernames and plaintext password of online accounts stored in the macOS Keychain, macOS Keychain is a build-in password management system that allows users to securely store username and passwords for online application, servers, websites, and credit card information, there is a flaw where malicious non-privileged code in app could programmatically access the Keychain and dump all this data including your plain text passwords, finally Patrick Wardle has release a proof of concept video that demonstrated how the hack can be used to exhilarate every single plaintext password from Keychain.

If you interested on the video -> https://vimeo.com/235313957