“Oh don’t worry,” your uncle said when you were shopping for a new computer. “Macs are virtually virus proof.” Your uncle was wrong.
A team of white hat hackers just announced the development of the world’s first firmware worm that’s vicious enough to break through Apple’s legendary security. The so-called Thunderstrike 2 attack can be delivered through a phishing email or a peripheral device like a USB stick or even an ethernet adaptor. The worm then targets a machine’s option ROM or lives in the option ROM of peripherals so that even computers not connected to a network can be infected. It also can’t be removed from the firmware unless you open up the box and manually re-flash the chip. Oh, and the worm can’t be detected by any existing security software, so good luck with that.
http://gizmodo.com/the-worlds-first-firmware-worm-for-mac-is-here-and-it-1721740928?utm_campaign=socialflow_gizmodo_facebook&utm_source=gizmodo_facebook&utm_medium=socialflow