Skip to main content

Hacker discovers a MacOS exploit that is able to access system passwords

Security researcher Linus Henze recently uncovered a vulnerability within MacOS Mojave that allows an unauthorized application to steal passwords from both your Mac’s ‘login’ and ‘system’ Keychains. As macOS’ password management system, Keychain has been implemented since Mac OS 8.6, keeping user’s most important data safe and secure; however, as of late it doesn’t seem to be doing the job. A similar exploit was discovered and patched in 2017, but now Henze’s discovery, which he names KeySteal, is currently still within MacOS and available for hacker exploit.

KeySteal can access and view a system’s Keychains without requiring any permission from the user. Such action is typically protected by an administrator password needing to be entered before an application is granted access to a single part of the Keychain. The exploit itself needs to be launched when a user is logged in and could be extremely dangerous if unsuspectingly downloaded. The exploit completely bypasses security measures from Apple such as the company’s T2 security chip, and thus are entirely ineffective.

Recommended Videos

Henze’s KeySteal exploit has not been clearly explained from a technical level; he keeps the knowledge away from the public to prevent causing widespread security issues, but he has also held it from Apple. One point that has been routinely cited by MacOS security researchers is that Apple doesn’t offer a bounty for exploits as it does with its iOS platform. Thus, security researchers who spend their time discovering exploits are not rewarded for their work. It is common practice to pay security researchers for finding bugs and other exploits, putting Apple’s stance with MacOS in a unique position.

As of this moment, Apple has not commented on the exploit, nor has it issued a patch securing the vulnerability. Thus, users concerned about the KeySteal exploit should continue to follow safe security practices when downloading content from the web — not acquiring content from unknown sources and not running any applications that are unfamiliar. The previous exploit took Apple about two weeks to patch, but the researcher, Patrick Wardle, provided the company with detailed information, thus it is called into question how long it will take Apple to discover the current issue before offering the update.

Michael Archambault
Former Digital Trends Contributor
Michael Archambault is a technology writer and digital marketer located in Long Island, New York. For the past decade…
Apple’s glass-like software redesign sounds cool, but it isn’t exactly new
Concept design with glass aesthetics on iPad.

Apple and its obsession with aesthetics are a well-documented part of its history. At WWDC 2025, the company is going to embark on a fresh design chapter inspired by glass elements. Think transparency and reflections, carried over to the app icons, windows, and widgets on your iPhone’s screen. The tablets and desktops, too. 

Word on the street is that “glassmorphism” is back. Sebastiaan de With, an ex-Apple designer and the mind behind excellent apps like Kino and Halide, joked that after the WWDC keynote, you can no longer use the word glassmorphism.

Read more
I’m using this powerful macOS feature that many ignore, and you should too 
Background apps on M4 MacBook Air.

MacOS is preferred for its fluidity and seamlessness. Of course, solid hardware and fire-breathing silicon add to its appeal, but the software experience developed by Apple focuses on convenience and security more than anything. 

In its quest to do so, however, Apple has often ignored glaring functional holes in the OS. The lack of a native clipboard is one such as miss, one that is addressed by excellent third-party apps such as Maccy. The Menu Bar is another similar tale of missed opportunities. 

Read more
A sticky notes app for Safari transformed how I get work done on macOS
Sticky Notes on a Safari webpage.

Just a few days ago, the Mozilla Foundation announced that Pocket was shutting down. One of the most popular bookmarking and webpage saving tools out there, especially among journalists and researchers, Pocket leaves a gap that will be hard to fill. 

The absence will be felt deeply because there’s no viable alternative that can offer it all in a polished package. To users tied to the Apple Mac ecosystem, they have even fewer choices for a few reasons. The most notable among them all? Safari’s save later and bookmarking system. 

Read more