Security Researcher Won't Share macOS Keychain Bug

· · Link

Security researcher Linuz Henze found a macOS Keychain bug but won’t share it with Apple out of protest.

Henze has publicly shared legitimate iOS vulnerabilities in the past, so he has a track record of credibility. However, Henze is frustrated that Apple’s bug bounty program only applies to iOS, not macOS, and has decided not to release more information about his latest Keychain invasion.

It is odd that there isn’t a macOS bug bounty but I think withholding security information isn’t the way to go.

macOS: Show All of the Passwords for an AirPort Base Station

· · Quick Tip

CIA's Cherry Blossom WiFi router hack list doesn't include AirPort Basestation

If you’re using a Time Capsule or an AirPort Express or Extreme, then you should know that there’s a way to pull together all of the passwords associated with one of those devices for easy safekeeping. Screenshot this and put it in your password manager or print it out and throw it in your safe, and you’ll have all of your network info secured!