Developer Skips Reporting OS X Security Hole to Apple
Engadget reports this afternoon that a developer revealed a Mac security hole without telling Apple. Typically, coders and researchers who discover security vulnerabilities in software will tell the companies involved before posting their findings -- it's a courtesy to make sure that those holes are patched before attackers can use them. Don't tell that to developer Luca Todesco, though. He recently posted details of an OS X exploit, "tpwn," that lets intruders get root-level access to your Mac (even if it's running the recent 10.10.5 update) without even telling Apple, let alone waiting for a patch. It's now a race between the Cupertino crew and malware writers to make use of the discovery. For more on this, read the Engadget report.
About Making Comments on our Site: Patently Apple reserves the right to post, dismiss or edit any comments. Comments are reviewed daily from 4am to 6pm PST and sporadically over the weekend.
Comments