The so-called Apple File System (APFS) It's a new
file system that promised very significant improvements in terms of
Privacy and Performance, optimized for SSD storage devices and
flash running MacOS, ios, TVOS and WatchOS, however, a
Severe programming failure in the APFS file system for the MacOS OS
High Sierra Exposing Encrypted Drive Passwords.
When you create a new volume, the encryption password is left in
unified records in plain text and anyone can retrieve it
with the mandate:
Log Stream –info –predicate 'eventMessage contains
“newfs_”‘
The problem is that passwords stored in text
plane can be discovered by anyone who has access to the
authorized to your team, Malware can also collect log files
and send them to someone with malicious intent.
Nor does an update save the vulnerability since if
The volume was created before the update The file is still at the
Reach of cybercriminals.
In addition, this system suffers from an image vulnerability of
disk that in certain circumstances can lead to data loss, according to
the creator of Carbon Copy Cloner. Software Developer Mike Bombich
He explained that he had discovered the flaw in writing data to the system
APFS file.