The upcoming beta update OS X Yosemite 10.10.2 contains a spell for the Thunderstrike vulnerability that allows malware to endure injected into Macs via the Thunderbolt port.
Earlier this month, Reverse engineer Trammell Hudson revealed technical details in addition to proof-of-concept of Thunderstrike attack.
Thunderstrike, an undetectable bootkit, industrial plant yesteryear injecting an Option ROM into a Mac’s EFI. It is possible because hardware attached to a arrangement through Thunderbolt port are non equally secure equally a Mac itself.
Once installed using Thunderstrike attack, the malware would endure close impossible to discovery in addition to remove.
Because the firmware used on Macs doesn’t ever apply to the safety of attached hardware. So "Apple had to alter the code to non solely preclude the Mac's kicking ROM from beingness replaced, but too to preclude it from beingness rolled dorsum to a soil where the assault would endure possible again.” developers told imore.
“According to people alongside access to the latest beta of OS X 10.10.2 who are familiar alongside Thunderstrike in addition to how it works, that's precisely the deep, layered procedure that's been completed.”
OS X Yosemite 10.10.2 beta too addresses the three zero-day vulnerabilities previously disclosed yesteryear Google’s Project Zero.
Don’t worry, patches are already on the way. OS X Yosemite 10.10.2 update has already gone out to developers in addition to presently volition endure rolled out to OS X users.
