Helping a relative figure out why their Mac is creating a new FileVault key with each macOS update.
Well... they sent the full key in an open email. 🤦♂️🤦♂️🤦♂️
How big of a security risk is this now? Could an attacker gain access to their system with the recovery key? Risk of a physical attack is low, more concerned about being low-fruit for a remote attack.
(Mac is an Mx system, so if it's better just to generate a new key please advise how. Want to avoid having to walk them through toggling FileVault off/on and any pitfalls doing that.)
Well... they sent the full key in an open email. 🤦♂️🤦♂️🤦♂️
How big of a security risk is this now? Could an attacker gain access to their system with the recovery key? Risk of a physical attack is low, more concerned about being low-fruit for a remote attack.
(Mac is an Mx system, so if it's better just to generate a new key please advise how. Want to avoid having to walk them through toggling FileVault off/on and any pitfalls doing that.)