![]() ![]() What Does That Mean to Mac Users?Īfter analyzing 73,000 Macs currently in use, Duo Labs has discovered a discrepancy between the firmware versions they expected the machines to be running and the actual EFI version installed. The catch is that the flaw isn't new and seems to require physical access to the Mac in order to work. The vulnerability allowed the CIA, for example, to spy on targeted Mac users, as a so-called Vault 7 cache of secret CIA documents released by WikiLeaks show. That changes with macOS 10.13 High Sierra, which contains a tool validating the authenticity of the firmware running on the Mac. Due to the firmware's level of privileges, if a hacker can gain access to it then their attack cannot be detected. EFI is the BIOS replacement originally developed by Intel that aims to overcome the limitations of the PC BIOS. The flaw, discovered by security researchers at Duo Labs, is in the EFI (Extensible Firmware Interface) firmware, which sits beneath the operating system. ![]() ![]() Still, Apple now has to address an industry-wide issue that leaves a portion of Macs vulnerable to hacker attacks. At every opportunity, Apple touts the security advantages of controlling both software and hardware: it's why the “It just works” slogan has become synonymous with the company. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |