rt.com Published time: 5 Aug, 2015 01:51
The worm works by attacking the computer’s firmware, the software that comes pre-installed and loads the operating system. Firmware provides control, monitoring and data manipulation in engineering products or systems.
The cybersecurity research work on the worm was carried out by Xeno Kovah, owner of LegbaCore, and Trammell Hudson, a security engineer with Two Sigma Investments.
According to the researchers, an attack can occur via a phishing email (an email sent from a fake “trusted institution” like a bank) or a malicious website containing the worm. Once activated, the malware would look out for any peripherals connected to the computer, such as an Ethernet adapter, which it would then infect. The worm could then spread to any other computer to which the adapter gets connected. Once connected, the worm writes malicious code to the firmware of the MacBook.
One way to randomly infect machines would be to sell infected Ethernet adapters on eBay, or infect them in a factory, Wired reported.
“[The attack is] really hard to detect… it’s really hard to get rid of,” Kovah told Wired. “It’s really hard to protect against something that’s running inside the firmware…for most users that’s really a throw-your-machine-away kind of situation.”
Thunderstrike 2 can’t be removed with traditional anti-malware security program, either. It requires programming the computer’s chip.
Kovah and Kallenberg said that the worm was developed to showcase vulnerabilities in Apple devices. According to Vice, Apple has been notified has already fixed one type of vulnerability and partially patched another. Three are still unresolved.
Wired reported that last year Kovah and his partner at Legbacore, Corey Kallenberg, exposed firmware vulnerabilities that affected 80 percent of PCs they examined.
“It turns out almost all of the attacks we found on PCs are also applicable to Macs,” Kovah said at the time.
Kovah said they looked at six vulnerabilities and found that five of them affected Mac firmware. Their discovery showed that hardware makers tend to all use some of the same firmware code.
“Most of these firmwares are built from the same reference implementations, so when someone finds a bug in one that affects Lenovo laptops, there’s a really good chance it’s going to affect the Dells and HPs,” said Kovah.
“What we also found is there is really high likelihood that the vulnerability will also affect Macbooks. Because Apple is using a similar EFI (BIOS) firmware.”
The consultants will showcase the worm at the Black Hat security conference in Las Vegas on Thursday. The goal is to push tech companies to take security more seriously.
Kovah said some vendors are active about removing vulnerabilities in their firmware but others are not.
“We use our research to help raise awareness of firmware attacks, and show customers that they need to hold their vendors accountable for better firmware security,” Kovah told Vice News.
NOTICE OF DATA BREACH Dear User, We are writing to inform you about a data security issue that may involve your Yahoo account information. What Happened? A copy of certain user account information was stolen from our systems in late 2014 by what we believe is a state-sponsored actor. We are closely coordinating with law...
12:15am EDT Breaking News The hashtag #GasShortage is trending on twitter for Tennessee. It will soon be trending elsewhere. My brother reported to me a few minutes ago that Gas stations in Greensboro NC are out of gas and those truck stops have only about 7000 Gallons as of 1155pm EST. The immediate...
World Peace: The Final Chapter By Brooks Agnew Notes from 04 September 2016 World peace has been cited by pageant misses as their life’s work for more than a century. It is the stuff of happily ever fairy tales and Mendala shifting Disney movies. Guard dropping press releases misled Neville Chamberlain and countless other kings to...
Forgiveness by Luckee1 as heard on 30 August 2016 http://tfrlive.com/luckee-with-truth-frequency-news-66847/ I know when I was a girl, I was told that we had to forgive others. The adults, especially those associated with church, always talked about forgiving others. They also talked about how Jesus died for our forgiveness. They would talk about things like forgive your...
Original post is: Watch as amazing GcMAF treatment kills cancer cells in real time… holistic doctors ‘suicided’ over this stunning breakthrough A breakthrough cancer treatment appears to be the reason why a handful of holistic doctors were recently found “suicided” is now gaining worldwide attention as a potential universal cure for cancer. And new microscopic...