Slashdot Mirror

← Back to Stories (view on slashdot.org)

Thunderbolt Rootkit Vector

Posted by Soulskill on from the like-USB-but-better dept.

New submitter Holi sends this news from PC World: Attackers can infect MacBook computers with highly persistent boot rootkits by connecting malicious devices to them over the Thunderbolt interface. The attack, dubbed Thunderstrike, installs malicious code in a MacBook's boot ROM (read-only memory), which is stored in a chip on the motherboard. It was devised by a security researcher named Trammell Hudson based on a two-year old vulnerability and will be demonstrated next week at the 31st Chaos Communication Congress in Hamburg.

2 of 163 comments (clear)

  1. Re:uh - by design? by Anonymous Coward · · Score: 0, Funny

    By your own admittance (and a touch of commonsense) PCIe is also unsafe by design as you're more likely to find an end user installing a new PCIe card than you are a thunderbolt device... USB as well.
     
    But I know, I know... this is Apple... let's beat on them even though you've proven yourself why hardware of any ilk should be untrusted.

  2. So if you get hit by this attack, have you been... by exabrial · · Score: 3, Funny

    So if you get hit by this attack, have you been... Thunderstruck?? /me shows self to door