An error allows access to computers with Thunderbolt port, but rest assured that your Mac is safe

Thunderspy

Thunderbolt connectivity appeared with the intention of offering high transfer speed through the use of optical technology. Unfortunately, it has been revealed that there is a new attack on computers that involves it, as some security flaws in Thunderbolt ports put at risk protected and important data for the user, but rest assured this is not so dangerous for Mac .

Thunderspy

This new attack is performed physically and has been named Thunderspy. Researcher Björn Ruytenberg from the University of Eindhoven has created a site dedicated to this topic and which informs the entire community with luxury of detail all the problem .

This site explains that it takes less than 5 minutes to violate the security of a computer . What the information thief does is remove the backplane, connect a set of peripherals that violate the computer, reprogram the firmware and replace the board.

Vulnerability

The attack does not leave any trace because the device believes that the same user is accessing the session; skipping the lock screen and allowing full access to all the data stored on the computer.

These are Thunderspy's vulnerabilities so far, all of them confirmed by Intel:

  • Improper firmware verification
  • Weakness in device authentication
  • Use of unauthenticated metadata
  • Downgrade attack using backward compatibility
  • Use of unauthenticated driver settings
  • Shortcomings of the SPI flash interface
  • No Thunderbolt security in Boot Camp

At the moment this security flaw is mainly found in the computers that have Thunderbolt and Windows or Linux systems sold between 2011 and 2020. Apple users should only worry about the recent statement that Mail has security flaws, to which the same company has already responded, arguing the plans that Apple has to counter this vulnerability in Mail.

Those who have a Mac are not in as much danger of being attacked by Thunderspy, because even when their computers have Thunderbolt ports only the Mac after 2011 and activating Windows through Boot Camp can be violated .

Given the problem, the Thunderspy site offers security alternatives and software that allows you to identify if your computer is susceptible to attack .

The article An error allows access to computers with Thunderbolt port, but rest assured that your Mac is safe, it was first published on iPadizate.

About Emmanuel

This is a short description in the author block about the author. You edit it by entering text in the "Biographical Info" field in the user admin panel.

0 Comments:

Post a Comment

Your comment and facebook share will be appreciated