Wired

The Shenanigans Behind a Stealthy Apple Keychain Attack

In early February, an 18-year-old German security researcher named Linus Henze demonstrated a macOS attack that would allow a malicious application to grab passwords from Apple's protected keychain.
Bleeping Computer

Researcher Declines to Share Zero-Day macOS Keychain Exploit with Apple

Security researcher Linus Henze demoed a zero-day macOS exploit impacting the Keychain password management system which can store passwords for applications, servers, and websites, as well as ...
PC Magazine

MacOS Bug Can Expose Passwords in Keychain Access App

MacOS Bug Can Expose Passwords in Keychain Access App Researcher Linus Henze posted a video demonstrating the exploit, which can pilfer login credentials from macOS's Keychain Access app. But he won't ...
Macworld

Why iCloud Keychain may prompt you for a device password used with other Apple hardware you own

Apple lets you sync passwords via iCloud through a clever mechanism that keeps your secrets safe from all snoopers—including Apple. iCloud Keychain syncs passwords among all iPhones, iPad, and Macs ...
ZDNet

How to locate a password with the macOS Keychain

I will start this out by reminding everyone that you should be using a password manager to store and protect all of your passwords. We've reached a point where password managers should be considered ...
CSOonline

Tool allows Mac OS X hackers with root access to easily extract keychain data

A new tool allows Mac OS X attackers with root OS access to easily steal the keychain password data of logged in users and reinforces the dangers of granting administrative privileges to applications ...