Last year security researchers discovered a security flaw in OS X which only affected those running OS X Yosemite. Apple later released an update that supposedly fixed the issue, but according to a report from Objective-See (via ZDNet), it seems that the flaw is still there indicating that Apple has yet to address it in full.
According to Objective-See, “However, on my flight back from presenting at Infiltrate (amazing conference btw), I found a novel, yet trivial way for any local user to re-abuse rootpipe – even on a fully patched OS X 10.10.3 system.” That being said, thankfully Objective-See has decided not to share the technical details of how he managed to perform the attack, apart from sharing it with Apple, so in the meantime hackers will need to figure this one out themselves.
For those wondering what the big deal about this security flaw is, basically this is a flaw that when exploited by hackers will allow them to take over the user’s machine. In the process they will also be able to inject malware into the operating system and wreak all kinds of havoc on the user’s system and in the process, could end up stealing sensitive information such as passwords, personal details, bank account numbers, and etc.
It is unclear as to what Apple’s response is to this recent discovery but here’s hoping the Cupertino company will get working on a fix right away.
. Read more about