Macs Vulnerable to Firmware Attacks Like 'Thunderstrike', Says Duo Security

Macs Vulnerable to Firmware Attacks Like 'Thunderstrike', Says Duo Security

Apple Mac computers are being exposed to security risks because core software is outdated, research suggests. But, by looking at what EFI updates Apple has released, and then correlating that with a review of over 73,000 Macs running in the real world, they found many systems were not running the latest EFI, even though it's made available through Apple's update services. "In a nutshell", they write, "this means that attacking at the EFI layer means that you exert control of a system at a level that allows you to circumvent security controls put in place at higher levels, including the security mechanisms of the OS and applications".

Out of 54,000 Apple computers 4.2% machines had unexpected versions of extensible firmware interface.

In most cases, firmware is a hassle to update with the latest security patches.

Further analysis of Apple's updates also highlighted what seems to be the erroneous inclusion of 43 versions of EFI binaries in the 2017-001 security updates for 10.10 and 10.11 that were older than the versions of EFI binaries that were released in the previous updates 2016-003 (10.11) and 2016-007 (10.10). Some 31 models capable of the same did not have an EFI firmware patch addressing the remote version of the Thunderstrike 2 flaw. But unlike an OS update failure, an EFI update failure does not send any warning to the user. Here is what the paper says: "At least 16 models received no EFI updates at all".

"Firmware is an often overlooked yet vital component of a system's security structure", said Rich Smith, Duo director of research and development. "We are confident Apple is making significant efforts to increase the security of their EFI environment, and look forward to continuing our research to include the newest OS - High Sierra".

The firmware discrepancies appear to affect different models of Mac computers to varying degrees. The computers tested were receiving software updates, and Apple has been bundling software and firmware updates since 2015. The researchers describe the problem as "software secure, firmware insecure".

"Apple continues to work diligently in the area of firmware security and we're always exploring ways to make our systems even more secure", it said. "In order to provide a safer and more secure experience in this area, macOS High Sierra automatically validates Mac firmware weekly".

Cricketer Ajinkya Rahane comes out in support of 'Swachh Bharat Abhiyan'
He also said that the role of the media and civil society in supporting this thought revolution has been appreciable. However, only 16 % people said that local bodies have conducted any drive for awareness on cleanliness.

Skipping breakfast can enlarge your waist!
Researchers have said skipping breakfast may possibly increase the likelihood of heart disease . Experts said the findings prove breakfast really is the most important meal of the day .

October is Domestic Violence Awareness Month
October is Domestic Violence Awareness Month and a north country agency is trying to spark conversation about it. Jenks. "Today, we renew our commitment to educating our community, in an effort to break the cycle of violence".

But part of the firmware security gap could be the fault of BOFHs rather than Apple.

KitGuru Says: Apple tends to be very diligent when it comes to user security. Updates have to be carried out separately from the operating system updates that are more commonplace.

People with out-of-date EFI versions should know that pre-boot firmware exploits are now considered to be on the bleeding edge of computer attacks. Forty-three percent of those computers sampled were running the wrong firmware.

Such malware is expensive and in most cases, only nation-state cyberspies can afford to develop and use it. An attack of this kind is even more hard to fix.

But Windows users shouldn't be complacent.

Without those updates, affected Macs could be "vulnerable to a variety of known public EFI security issues", they added. In total, 4.2 percent of the tested Macs were insecure.

Related Articles

  • Marcus Rashford relishing competition with Manchester United team-mate Anthony Martial

    Marcus Rashford relishing competition with Manchester United team-mate Anthony Martial

    England global Marcus Rashford has been one of the key men under Mourinho's reign at United. Obviously he's worked with the Under-21s before - he knows how to deal with young players".
    VJacqueline Fernandez outshines Taapsee Pannu in 'Judwaa 2'

    VJacqueline Fernandez outshines Taapsee Pannu in 'Judwaa 2'

    However, despite this the holiday mood among the audience propelled the film's collections during the morning and afternoon shows. The birthday of Mahatma Gandhi became lucky for Judwaa 2 producers as the first weekday too turned out to be a good earning day.
    Vegas concert star called a 'coward'

    Vegas concert star called a 'coward'

    COUNTRY superstar Jason Aldean has been trolled for leaving the stage after shots were fired during his concert in Las Vegas. A gunman is believed to have opened fire from the upper floors of the Mandalay Bay Hotel and Casino.
  • We deserved to lose against India: Australia captain Smith

    We deserved to lose against India: Australia captain Smith

    Rohit and captain Virat Kohli kept the runs flowing with a 99-run stand, during which Rohit sailed past his hundred. Smith was less than impressed with his side's performance, and said: "Probably around a 300 wicket , I think".
    Amit Shah flags off Janaraksha Yatra in Kerala

    Amit Shah flags off Janaraksha Yatra in Kerala

    Shah was received by temple authorities. "We will use democratic means to answer its violence", he said. Shah is likely to be in Kerala for three days and expected to join the march in at least three places.

    Horner confident in Red Bull speed

    Vettel , meanwhile, was handed a 20-place grid penalty after Ferrari made several component changes to his engine before the race. His Ferrari team-mate, Kimi Raikkonen , was not able to take the start, in spite of the fact that he was leaving the second rank.
  • Alabama, Clemson still 1-2 in poll

    Alabama, Clemson still 1-2 in poll

    Clemson scored the first touchdown of the second half midway through the third, and the contest was beyond over. Meanwhile, the No. 2 Clemson Tigers have also impressed en route to an unblemished record through five weeks.
    Kerala Love Jihad: SC Questions if HC Has Power to Annul Marriage

    Kerala Love Jihad: SC Questions if HC Has Power to Annul Marriage

    Mohandas had gone on to make a statement that the girl "is undergoing enormous human rights violation at her house". The apex court asked how the father of the girl could question the rights of a girl who was 24 years old.
    Sturridge has gone downhill since Suarez left Liverpool, says Carragher

    Sturridge has gone downhill since Suarez left Liverpool, says Carragher

    Jamie Carragher and Graeme Souness take a look at Liverpool's defending as Newcastle scored their equalising goal on Sunday. Sturridge has remained rooted to the bench, with manager Jurgen Klopp withholding his faith in the player.
  • US carrier navigates crowded waters as North Korea tensions mount

    US carrier navigates crowded waters as North Korea tensions mount

    South Korean media reported on Sunday that the vessel would take part in a joint exercise with the South Korean navy around October 15.
    Mourinho 'Highly Confident' Of Signing Mesut Ozil

    Mourinho 'Highly Confident' Of Signing Mesut Ozil

    Even then, though, the chairman warned against anything being expected after being burned in the January market before. Inter Sporting Director Piero Ausilio talked to Premium Sport ahead of the nerazzurri away clash to Benevento.
    Gas prices in Rhode Island down 3 cents this week

    Gas prices in Rhode Island down 3 cents this week

    The average price of gas in Rhode Island is down by three cents this week, while in MA it's fallen by two cents. Gas in the New Haven area is also cheaper than in Waterbury, where the average fuel price is $2.75 per gallon.