Matheus Mariano

@matheusmariano

New macOS High Sierra vulnerability exposes the password of an encrypted APFS container

This week, Apple released the new macOS High Sierra with the new file system called APFS (Apple File System). It wasn’t long before I encountered issues with this update. Not a simple issue, but a potential vulnerability.

I created a new Encrypted APFS container.

And put a password (mypassword) with a hint.

After created, I unmounted and mounted again my new container.

And voilà.

The problem affects only Macs with SSD.

I really don’t know how this went unnoticed by Apple (and anyone else). Anyway, it was already reported to Apple by me.

Topics of interest

More Related Stories