Independent developers have discovered a serious vulnerability in Mac OS X Lion

After the announcement and the release of Mac OS X Lion many went out of the question that this version of Apple's operating system provides more powerful protection user data than the previous OS. However, in reality this was not entirely true. Representatives of the company Passware, dedicated to creating software for password recovery, found unfortunate vulnerabilities "Lion."

The problem, as it turns out, is that anyone can easily get a craftsman Mac computer administrator password and sensitive data from it. To do this, you just need to get the physical access to your PC and connect to it via a built-in FireWire port. However, neither the complexity of the password, or an activated disk encryption using FireVault not secure against attacks of this kind. The computer does not even have to actively work, it just might be in sleep mode.

While Apple representatives have not yet provided comments on the "discovery" in Passware say about Mac computers to protect themselves. They are incredibly simple. Switch off the machine after use, and it is desirable not to use the function Automatic Login, activated by default in Mac computers.

It is stipulated that the problem of security and a FireWire port on Mac computers is not new. Back in 2008, if not before, it became known that, if they are to connect another PC via a FireWire port, it will open an attacker direct access to the manipulation with the RAM. On the Mac platform, this vulnerability existed in OS Snow Leopard, so is now in Lion.

Hacking can be realized with the help of tools for analyzing memory Mac via FireWire from Passware, Passware Kit Forensic V11. The program sells for $ 995 with free updates during its years of use.

[MacWorld]