Home | Community | Message Board

NorthSpore.com BOOMR Bag!
This site includes paid links. Please support our sponsors.


Welcome to the Shroomery Message Board! You are experiencing a small sample of what the site has to offer. Please login or register to post messages and view our exclusive members-only content. You'll gain access to additional forums, file attachments, board customizations, encrypted private messages, and much more!

Shop: PhytoExtractum Kratom Powder for Sale   Bridgetown Botanicals CBD Concentrates

Jump to first unread post Pages: 1
Invisibletdubz
Male User Gallery


Registered: 02/26/12
Posts: 5,586
This $300 Device Lets You Steal A Mac Encryption Password in 30 Seconds
    #23930604 - 12/15/16 07:11 PM (7 years, 1 month ago)

https://motherboard.vice.com/read/this-300-device-lets-you-steal-a-mac-encryption-password-in-30-seconds

If you’re paranoid, and you know what hackers can do when they can get their hands on your computer even for just a few moments, you probably already know that you shouldn’t leave your laptop unattended.

Now, if you’re an Apple user, you have another great reason not to do that.

Using a contraption that costs around $300 and some open source software, a hacker could steal your MacBook password from your own laptop while it’s sleeping or locked in just 30 seconds. This would allow them to unlock the computer and even decrypt the files on your hard drive. In other words, game over.

Read more: Hacker Shows Us How to Unlock a Laptop Using an NSA-Like Tool

Ulf Frisk, a Swedish hacker and penetration tester, devised this technique to highlight a flaw in the way MacOS protects the password that’s used to decrypt the hard drive with FileVault, Apple’s full-disk encryption software.

“It's more or less plug and play.“
As it turns out, Macs stores the password in memory in cleartext. And they don’t scrub it from memory when the computer is in sleep mode or locked. And even when the computer gets rebooted “there is a time window of a few seconds before the memory containing the password is overwritten with new content,” according to Frisk, who explained how his technique works in a blog post on Thursday.

The other problem, Frisk explained, is that the Mac EFI, the computer’s core firmware (similar to a PC’s BIOS), allowed devices plugged in over Thunderbolt to access memory, without enabling Direct Memory Access (DMA) protections.

As Frisk shows in the video embedded above, all a malicious hacker would need to do is plug in a card connected to an adapter and flashed with Frisk’s open source PCILeech software tool into the Mac’s Thunderbolt port. Then, run the PCILeech on a laptop connected to the contraption, reboot the Mac, and read the Mac password on the other laptop.

“It's more or less plug and play. It’s really as easy as shown on the video,” Frisk told Motherboard in a Twitter chat. “I imagine unpatched Macs will be super interesting for law enforcement and various spy agencies.”

The good news is that on Tuesday Apple released a patch for MacOS that makes this attack impossible, according to Frisk.

Apple did not immediately respond to a request for comment but Xeno Kovah, a security researcher who works at Apple, tweeted that MacOS 10.12.2 fixed this issue. Kovah also suggested setting a firmware password to make your laptop or computer even more secure against physical attacks.

“To patch it is the only way to mitigate this really, but other attacks, (evil maid scenario) are also possible unless you set the firmware password,” Frisk said. “If you both patch and set the firmware password you should be really secure.”


Extras: Filter Print Post Top
Jump to top Pages: 1

Shop: PhytoExtractum Kratom Powder for Sale   Bridgetown Botanicals CBD Concentrates


Similar ThreadsPosterViewsRepliesLast post
* OS with support for encrypted file systems? OJK 1,216 9 07/06/06 06:07 AM
by OJK
* Encrypted Filesystems windex 1,279 2 10/13/03 12:21 AM
by bsta1n
* How can i penetrate password protected Wi Fi network? (ie how can i steal interent from neighbours)
( 1 2 3 all )
Jalruza 21,319 56 02/10/08 03:56 PM
by psilosibling
* Seagate Releases First Hard Drive With Native Strong Encryption (AES) DiploidM 1,766 14 02/14/08 02:43 AM
by Seuss
* Hitachi Ships Hard Disk With Built In Hardware Encryption DiploidM 1,931 6 05/14/07 09:57 PM
by Diploid
* Encryption Cepheus 1,012 6 07/08/08 09:17 PM
by fushock
* Passwords on MS Vista Brainiac 684 3 03/15/08 09:42 AM
by Newbie
* Password protecting external HD Gumby 2,387 19 08/20/08 05:51 AM
by delta9

Extra information
You cannot start new topics / You cannot reply to topics
HTML is disabled / BBCode is enabled
Moderator: trendal, automan, Northerner
206 topic views. 0 members, 0 guests and 0 web crawlers are browsing this forum.
[ Show Images Only | Sort by Score | Print Topic ]
Search this thread:

Copyright 1997-2024 Mind Media. Some rights reserved.

Generated in 0.021 seconds spending 0.005 seconds on 12 queries.