Institute For Ethical Hacking Course and Ethical Hacking Training in Pune – India
Extreme Hacking | Sadik Shaikh | Cyber Suraksha Abhiyan
Last month, we told you how the Chinese security researchers were able to crack the security of Windows 10 browser, Adobe Flash, Safari, etc. in few seconds. This was followed by another news in December that was about credit/debit card hack in 6 seconds.
Continuing this “hacked in seconds” tradition, I’m here to tell you how hackers can get their hands on your Mac in just 30 seconds. This technique has been devised by Ulf Frisk, a Swedish pen-tester and hacker.
In his blog post, Frisk explains that the hardware used to hack a Mac costs $300 to build. This hacking device can be connected to a Mac via Thunderbolt port.
The root cause of the hacking vector is Mac’s habit of storing the password in memory in clear text. When the computer enters sleep mode, the password resides there. During the rebooting process, there’s a window of few seconds before the memory is overwritten with new content.
An attacker just needs to connect the hacking device (connected to another laptop) to Mac’s Thunderbolt port and force a reboot.
Frisk has also shared a video that shows what an attacker would need to do. Apart from the hardware, one would also need Frisk’s open source PCILeech software. For more technical details, you can read his blog post.
Apple has patched this security loophole in macOS 10.12.2. So, you’re advised to grab the update and secure your Mac.
www.extremehacking.org
Sadik Shaikh | Cyber Suraksha Abhiyan, Ethical Hacking Training Institute, CEHv9,CHFI,ECSAv9,CAST,ENSA, CCNA, CCNA SECURITY,MCITP,RHCE,CHECKPOINT, ASA FIREWALL,VMWARE,CLOUD,ANDROID,IPHONE,NETWORKING HARDWARE,TRAINING INSTITUTE IN PUNE, Certified Ethical Hacking,Center For Advanced Security Training in India, ceh v9 course in Pune-India, ceh certification in pune-India, ceh v9 training in Pune-India, Ethical Hacking Course in Pune-India