Thunderstrike is a new security exploit found recently on Mac computers by a Security Researcher Trammel Hudson from Chaos Communications Congress, Germany. Thunderstrike vulnerability allows hackers to infect Thunderbolt Port available older and latest macbook, imac, mac mini computers with a malware. It appears like there is a flaw in thunderbolt port that lets hackers to deploy a malware to further infect other mac computers in the network as well.
We see that a WMI device implemented a function with UUID 86CCFD48-205E-4A77-9C48-2021CBEDE341 which lets the OS power on the TB3 controller. On OSX, it's not as easy because the PCI drivers does not play well with a non-hotplug device that can power on independent of the device's PCI power management functions. Family Guy, Bob's Burgers, Futurama, American Dad, and King of the Hill join forces in Animation Throwdown, your favorite new collectible card game. Collect your favorite characters, combine cards to make hilarious combos, and battle your way through an adventure of animated proportions.
One temporary relief about Thunderstrike exploit is it is just a proof of concept right now and yet to go wild. Apple frequently fixes security exploits found in Macs and iOS devices by issuing updates. Apple Macs get EFI firmware security updates to prevent any reported and publicly available firmware level vulnerabilities being exploited by hackers.
- Mac Games War Thunder. War Thunder for Mac. 16,894 downloads Updated: April 28, 2021 Freemium. Review Free Download specifications 100% CLEAN report malware. An engaging and enthralling online game where you must destroy the enemy tanks, aircraft and human forces in.
- #showtooltip /use @mouseover,exists,harmKill Shot /use @pettargetClaw /use @pettargetBite /use @pettargetSmack; In hectic AoE scenarios such as Mythic+, it is beneficial to get as many Kill Shot s off as possible, but it can be difficult to navigate a ton of nameplates to select a target that is below 20% health. Using this macro, you can simply keep your mouse over the nameplate.
Thunderstrike is a recently reported EFI firmware vulnerability that allows malicious hackers to install untrusted code to the Boot ROM. Trammel Hudson gave a presentation about this vulnerability in a security conference 31C3.
What is Thunderstrike?
Hackers can install thunderstrike malware via externally available thunderbolt port on every mac computers. Once installed, it is not possible for users to remove it by reinstalling os x or by replacing hard disk drive. The bootkit installed in thunderbolt port firmware which is integrated to macbooks logic board. Thunderstrike can also hide from appleās efi firmware update routines which makes it stealthy from being detected by any programs. Your Antivirus or Security softwares wont be of any help in this case, as the thunderbolt port firmware loads even before the bootrom loads. So it can run silently and can control the mac computer from very first instruction once installed by an hacker.
Did Apple aware about Thunderstrike?
Throwthunder Mac Os 11
Well, apple is aware about Thunderstrike security problem and fixed part of the vulnerability in latest Mac mini and iMac Retina Display models. The issue is yet to be fixed fully on new mac computers.
[youtube]https://www.youtube.com/watch?v=5BrdX7VdOr0[/youtube]
Hudson claims that thunderbolt ports option ROMs are writable from code that runs during the early boot and the bootkit could write copies of itself to new thunderbolt devices connected in same network wirelessly or via cables. The code can stay alive in some part of the network once a machine is infected.
How to Prevent Thunderstrike Malware Infection?
Throwthunder Mac Os X
However, it requires hackers to get physical access to install thunderstrike malware as they need to connect with thunderbolt port atleast once. So it is important to keep your mac secure from unauthorized access till apple addresses the thunderstrike security flaw with an update. The bootkit installation takes little time so hackers need to spend atleast couple of minutes to infect your mac computer. Right now, this is the only available countermeasure suggested by hudson in his presentation.
He also mentions, there are other efi vulnerabilities still unfixed by apple, and it will take just few bytes of update to fix the old option rom vulnerability. Though, the latest Thunderstrike fix is more difficult to solve even by apple, it is yet to be made available publicly for any malicious hackers to take advantage.
Throwthunder Mac Os Catalina
If you have more questions in your mind about Thunderstrike Malware, do check out his blog at trmm to read the answers he gave for questions raised during the presentation at 32C3.
Throwthunder Mac Os Download
Thanks for reading and dont forget to share a word about this post with Twitter, Facebook and Google+ friends. Have a great day!