Apple just released the latest version of macOS, dubbed High Sierra, but the OS has a critical flaw zero-day flaw that allows rogue applications to export passwords in plaintext. Worse, the issue isn’t limited to High Sierra (10.13) either, but appears to affect multiple previous versions of the operating system. The flaw was first spotted by Patrick Wardle, an ex-NSA employee who now works for the security research firm Synack.
Source: Critical Zero-Day Flaw in macOS Reveals Passwords in Plaintext – ExtremeTech