There's a scary worm that can attack your Macs remotely
REUTERS/Robert Galbraith
Two researchers have created a worm that could enable a firmware attack to spread undetected on MacBooks without requiring them to be networked, according to a report from Wired.
The worm, which the researchers call Thunderstrike 2, is extremely difficult to detect because it never touches system files or the operating system. This also means that it can't be detected by security software scanning for malicious code.
It is spread either by phishing email or by using a device that connects to your computer, like an Ethernet adapter. That means someone sends you a phony email that encourages you to click a link. That link installs the worm on your Mac. The worm then writes its malicious malware on the computer's "bootflash firmware," giving it complete access to the computer. It can then target other devices plugged into your computer, like a USB stick, infecting the firmware of that device so that the worm continues to spread with each computer it is plugged into.
In January, Trammell Hudson, a security engineer at Two Sigma Investments, revealed the Thunderstrike virus, which also targets MacBook firmware and can't be detected. But unlike Thunderstrike 2, the original Thunderstrike virus could only be spread via physical access through the peripherals.
In total, the researchers said they discovered five vulnerabilities in Apple's firmware. These vulnerabilities enabled the researchers to design the dangerous worm. Apple has fixed one of them and partially patched another, but three security holes are untouched, the researchers told Wired.
Tech Insider reached out to Apple for comment and will update the story as soon as we get a response.
Hudson and Xeno Kovah, owner of the firmware security consultancy LegbaCore, are both responsible for designing the worm and will reveal more details about their research this week at BlackHat.
- I spent $2,000 for 7 nights in a 179-square-foot room on one of the world's largest cruise ships. Take a look inside my cabin.
- Colon cancer rates are rising in young people. If you have two symptoms you should get a colonoscopy, a GI oncologist says.
- Saudi Arabia wants China to help fund its struggling $500 billion Neom megaproject. Investors may not be too excited.
- Catan adds climate change to the latest edition of the world-famous board game
- Tired of blatant misinformation in the media? This video game can help you and your family fight fake news!
- Tired of blatant misinformation in the media? This video game can help you and your family fight fake news!
- JNK India IPO allotment – How to check allotment, GMP, listing date and more
- Indian Army unveils selfie point at Hombotingla Pass ahead of 25th anniversary of Kargil Vijay Diwas
- JNK India IPO allotment date
- JioCinema New Plans
- Realme Narzo 70 Launched
- Apple Let Loose event
- Elon Musk Apology
- RIL cash flows
- Charlie Munger
- Feedbank IPO allotment
- Tata IPO allotment
- Most generous retirement plans
- Broadcom lays off
- Cibil Score vs Cibil Report
- Birla and Bajaj in top Richest
- Nestle Sept 2023 report
- India Equity Market