OS X 10.10.2 to Fix ‘Thunderstrike’ Mac Hardware Exploit

OS X 10.10.2 to Fix ‘Thunderstrike’ Mac Hardware Exploit

Apple’s upcoming OS X 10.10.2 update for Mac will reportedly contain a fix for the so-called “Thunderstrike” hardware exploit targeting Thunderbolt equipped Macs. iMore reports Apple will fix the security hole in order to prevent the Mac’s bootrom being replaced or rolled back to a state in which it could be attacked.

safari_8_Yosemite

iMore:

To secure against Thunderstrike, Apple had to change the code to not only prevent the Mac’s boot ROM from being replaced, but also to prevent it from being rolled back to a state where the attack would be possible again. According to people with access to the latest beta of OS X 10.10.2 who are familiar with Thunderstrike and how it works, that’s exactly the deep, layered process that’s been completed.

Thunderstrike was discovered earlier this year by security researcher Trammell Hudson. The serious vulnerability allows an attacker to replace a Mac’s bootrom with malicious code without a user’s knowledge.

No public instances of the attack have been found, and any such attack would be limited in scope as the attack requires physical access to a Mac, or requires the social engineering skills to trick a user into attacking their own Mac.

Apple’s latest Macs, including the iMac with 5K Retina Display and the new Mac mini, are already protected against the attack.

Apple’s OS X 10.10.2 update has been in beta testing for over two months, with the most recent beta seed being made available to developers last Wednesday. The update should soon be made available to the public.

(Via MacRumors)

  1. 12047 375423You need to be a part of a contest 1st with the most effective blogs online. Let me suggest this blog! 654202

  2. 70541 895472conclusion which you are absolutely correct but a few require to be 959204

  3. 319315 271993I observe there is a lot of spam on this weblog. Do you want assist cleaning them up? I may help among classes! 818109

  4. 35424 295069I really like your wp template, exactly where do you obtain it through? 702215

  5. 396560 749287Some truly marvelous function on behalf of the owner of this web web site , dead excellent articles . 782172

  6. 513289 156081As I internet site possessor I believe the content material here is truly superb , appreciate it for your efforts. 565379

  7. sbo says:

    663592 383594Just added this weblog to my favorites. I enjoy reading your blogs and hope you maintain them coming! 721517

Leave a Reply

Your email address will not be published.