Tech giant Apple is working to fix a major security bug affecting its newest MacOS High Sierra operating system.
The flaw allows anyone to get access to a computer without a password. The bug was made public on Tuesday by cybersecurity researchers, and has prompted a flurry of backlash for the company.
The bug allows a would-be hacker to log in as a “root” user and leave the password field blank. After attempting to log in multiple times, the individual can gain access to the system.
“Dear @AppleSupport, we noticed a *HUGE* security issue at MacOS High Sierra. Anyone can login as ‘root’ with empty password after clicking on login button several times. Are you aware of it @Apple?” tweeted Lemi Orhan Ergin, a Turkish researcher, on Tuesday.
Apple says that it is working to resolve the issue. Meanwhile, the company has offered a workaround on its website for individuals to set a root password, which Apple says will prevent unauthorized access.
“We are working on a software update to address this issue,” the company said in a statement to various news outlets.
For now, Apple's workaround instructs MacOS High Sierra users how to enable the root user on their computers or change the root password.