securityaffairs.com
Unsigned apps can dump full OS keychain, including plaintext passwords
Hackers can steal macOS keychain passwords using unsigned applications, it works on the latest version of macOS, High Sierra 10.13, and previous releases.
Pierluigi Paganini
