On Intel-based Macs shipped before 2011, the firmware password was stored in the PRAM and read by the system EFI firmware before other PRAM variables. They recommend checking the firmware version and updating if needed. But as security firm Duo Labs discovered in late 2017, some Macs aren't getting the right firmware, which makes them vulnerable to hackers. The process requires the original receipt or invoice as proof of purchase.Įarlier versions of macOS required manual installation of the firmware but, starting in 2015, Apple began bundling EFI updates with the macOS updates in order to deliver security patches to all users. If you or any of your users can't remember the firmware password or passcode, know that Apple doesn’t allow for any workarounds, but instead recommends scheduling a service appointment with an Apple Store or Apple Authorized Service Provider. Low-level passwords are quite secure, which also means there is potentially a headache if the password is forgotten. It's a separate password that appears immediately after boot and must be entered into the system lock screen, which appears as a lock symbol on either a black or a gray background. A firmware password is not the same as the administrator password or login password.