Thunderstrike: firmware vulnerability in Apple’s EFI

This is an annotated version of my 31C3 talk on Thunderstrike, a significant firmware vulnerability in Apple’s EFI firmware that allows untrusted code to be written to the boot ROM and can resist attempts to remove it.

Very detailed write-up on this remarkable vulnerability.

20 Comments

  1. 2015-01-02 7:04 pm
    • 2015-01-02 7:37 pm
      • 2015-01-02 8:16 pm
        • 2015-01-03 4:23 pm
          • 2015-01-03 11:08 pm
          • 2015-01-03 11:18 pm
          • 2015-01-05 2:35 am
    • 2015-01-02 9:21 pm
      • 2015-01-03 12:34 am
        • 2015-01-03 4:33 pm
          • 2015-01-03 5:29 pm
        • 2015-01-03 4:43 pm
  2. 2015-01-02 11:23 pm
  3. 2015-01-03 1:05 pm
    • 2015-01-03 4:27 pm
      • 2015-01-03 5:02 pm
        • 2015-01-04 5:15 pm
          • 2015-01-04 8:47 pm
          • 2015-01-04 10:48 pm
    • 2015-01-03 4:41 pm