Tuesday, July 26, 2011
Easy Access To The Password of Mac 10.6 and 10.7
Passware, a company specializing in the recovery of encrypted data or circumvent passwords, advertises a security vulnerability in Mac OS X that Leo has not filled. This, says the president of Passware, you can recover the password of the user account of a machine. This extraction involves, however, having first physical access to the machine and then use the FireWire port and hoping that a basic control system is disabled. If the conditions are met, the application of Passware retrieves an image from memory and to find information. The operation would take only a few minutes, regardless of the complexity of the password and the activation state of FileVault.
This is one of the new features Forensic Kit 11, the application Passware sells (just under $ 1000) for example to government authorities, private investigators and others who need access to machines locked. This tool is developed on Windows. This version also allows extracting the contents of the Keychain Access in Mac OS X. The multiple modes of access to the password limit the risks. Passware also states that its approach does not work if the user disables the one hand, the automatic opening of the account (the password is not stored in memory in this case) and also if switched off his machine rather than leaving it on standby. This vulnerability is also present in Snow Leopard, and having informed Passware says Apple. In a statement to Cult of Mac, the president of the company added that the security flaw has been fixed in Windows 7.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.