YIBADA

Mac BIOS Worm Infects Permanently, Spreads Without Internet Connection

| Aug 04, 2015 07:03 AM EDT

MacBook Pro 2016 Confirmed for November Release Date but without Intel Kaby Lake?

Security researchers have created Thunderstrike 2, the first worm that avoids the Apple Mac's operating system (OS), and instead permanently infects the machine's Basic Input/Output System (BIOS), which boots up the computer and launches the OS. The virus then spreads throughout the MacBook laptop or iMac PC even though it has no Internet connection.

As soon as the computer is switched on the worm starts to spread in the computer. It then starts to collect data such as logins, passwords, and banking data, according to LiveMint.  The virus then searches for external devices such as portable storage drives, and then connects to other computers.

Security engineer Trammel Hudson and security firm co-founder Xeno Kovah created the worm. They told Wired that it shows potential security vulnerabilities in Apple's desktops and laptops.  

A common belief is that PCs are more secure than Macs. Hudson and Kovah explained that it is not true, and their evidence is that their worm can automatically go viral from one MacBook to another Macbook without them being linked.

A bad situation gets worse. Anti-virus software typically is unable to scan CPU hardware at the BIOS level, so it is hard as nails to determine if the bug has infected your computing system, according to Hindustan Times.

 Kovah told Wired that most Mac owners and technicians do not believe that physically opening up the CPU and reprogramming the chip is worthwhile. Thus, in most cases the best option is to toss out the computer.

A BIOS update is the only permanent fix.  However, until Apple releases one there is nothing Mac owners can do to protect themselves from the malware.

The two researchers will share their findings at the Black Hat and Def Con security conference. It will take place later this week in Las Vegas.

Related News

Most Popular

EDITOR'S PICK