backtop


Print 60 comment(s) - last by Pirks.. on Aug 7 at 7:35 PM

Security experts say poor driver design leaves doors wide open

Two security researchers from Black Hat this week revealed a method in which a MacBook can be broken into and taken control of. In fact, the intrusion method is at such a low level that even firewalls and anti-virus applications can't help. Based on flaws in wireless network driver design, Apple's line of MacBooks -- and MacBook Pros -- allows an attacker to remotely bypass the security of the laptop and the operating system.

Jon Ellch and David Maynor from Black Hat say that drivers for Apple's notebooks are developed not in house, but outside using contracted development companies. Ellch says that often times, these development people are under so much pressure from higher management to get working drivers so that companies can rush our products to market. Under circumstances like this, drivers for devices such as wireless network processors enter "the wild" in an untested state.

However, Mayner said that "we're not picking specifically on Macs here, but if you watch those 'Get a Mac' commercials enough, it eventually makes you want to stab one of those users in the eye with a lit cigarette or something." Mayner cites that many of Apple's commercials claim that Macs don't suffer from the same security vulnerabilities that PCs do but in fact, they do.

The team at Black Hat demonstrated that they could circumvent the Wi-Fi security and OS level security in a MacBook and within just 60 seconds, were able to take complete control of the machine. Black Hat demonstrated the technique through a pre-recorded video to prevent anyone from intercepting the wireless network traffic to deconstruct the attack and release it elsewhere. Black Hat said that it has been in contact with both Apple and Microsoft, because the vulnerability exists on both sides.



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: So...
By joex444 on 8/6/2006 5:19:42 PM , Rating: 2
No, the Mac is like an impenetrable fortress against the malevolence being seiged upon the Windows users of the world. The Mac is completly and utterly incapable of receiving viruses, spyware, or any form of malware whatsoever. Also, it is so well designed and built that no hacker can penetrate it's balmy bellweather no matter what they attempt to, even stabbing it with the rubbery eraser end of a sharpened pencil will not cause it to ooze any sort of Mac goo. In short, this article is actually an attack by a spyware infected Windows computer on the dailytech site.


RE: So...
By INeedCache on 8/6/2006 8:08:07 PM , Rating: 2
But, you have to admit, those Mac commercials are sooo pathetic you just have to laugh. The sad part comes when you realize just how many uninformed people out there are buying into that load of excrement. And yes, not even Superman could penetrate a Mac. Must be the kryptonite core they have, because they are truly otherwordly.


"We are going to continue to work with them to make sure they understand the reality of the Internet.  A lot of these people don't have Ph.Ds, and they don't have a degree in computer science." -- RIM co-CEO Michael Lazaridis











botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki