Now that Apple has endowed the Mac operating system with state-of-the-art security protections, a researcher has devised new attacks that target the machine's battery. Charlie Miller, well known for his numerous attacks on iPhones and Macs, may not have achieved his ultimate objective of making a Mac spontaneously combust, but …

COMMENTS

House rules Send corrections

This topic is closed for new posts.

Page:

Saturday 23rd July 2011 19:55 GMT LPF

hold on a second

Surely if you have access to the battery you alreafy have access to the damn machine?

1 0
1. Saturday 23rd July 2011 20:31 GMT bazza
  
  @LPF, not necessarily so...
  
  Mac's aren't exactly immune to remote code execution attacks. It wouldn't take much more than a booby trapped website (www.makemymacgoboom.com? Anyone bought that one yet?) to run the necessary code on anyone's Mac who happened to visit it.
  
  Human nature being what it is, it will only be a matter of time before some script kiddie tries to detonate Macs all around the world simultaneously courtesy of a trojan payload with a timed execution time, "just for the fun of it".
  
  0 1
Saturday 23rd July 2011 22:23 GMT Anonymous Coward

Homeland Security

Will make sure that the Internet gets shut down to stop something like this if it is released, no questions asked.

Its a matter of potentially thousands of fires within a short space of time, no way will they let this happen without a fight.

Maybe Obama might get to use the infamous Internet Kill Switch aka the Big Red Button.

AC/DC

1 0
Sunday 24th July 2011 20:28 GMT slooth

So: not SO secure..........

So, Lion is more secure, more robust.....

Lets see:

a) we have bad pre-emption by vendors - http://www.theregister.co.uk/2011/07/22/mac_lion_kills_celerra/ - yes, they should have run beta versions.

b) we have bad assumptions by writers - http://www.theregister.co.uk/2011/07/21/mac_os_x_lion_security/

If I can kill a machine by attacking the battery, how is this more secure than any other operating system?

Me thinks writers are too quick to spout off about the newest, bestest OS for xx-machine out there.

Geez, at least let it run a month before deciding how good or bad it is!

1 1
Sunday 24th July 2011 20:29 GMT Mr Young

Aaah, good old micros - they are everywhere

Did this guy actually read the code back from the battery micro? Did somebody somewhere forget to set the code protect options bits? Or maybe it's a default password free for all? Oops either way and I guess that'll get sorted pretty quickly

0 0
Sunday 24th July 2011 20:30 GMT Matt Bucknall

You couldn't even take it to the genius bar.

Yeah, must be real bad. If those guys can't sort it out, no one can!

1 0
Sunday 24th July 2011 22:29 GMT Anonymous Coward

Thank you, and goodnight

I wondered when the rock bottom level of stupidity would finally reach The Reg.

The writers are still as fantastic as they've ever been - and do attend the conferences (Hi John - how are you?)

But the commentards... do you now need to fail a technology IQ test to post...?

3 1
1. Monday 1st August 2011 13:24 GMT Mr Young
  
  "rock bottom level of stupidity?" Come on?
  
  I, at least, could try harder if this isn't good enough for you
  
  0 0
Monday 25th July 2011 06:57 GMT Joe Montana

Apple specific, or???

Is this actually an Apple specific issue, or does this apple to other machines as well?

It's not uncommon for someone to initially target apple with their research because its a high profile target, only to later admit that other vendors have exactly the same issues.

1 0
1. Monday 25th July 2011 07:50 GMT Tim Bates
  
  Of course...
  
  It would certainly apply to other vendors who are stupid enough to have batteries that can have firmware arbitrarily updated... But at this stage, Apple is singled out because that's the vendor it's been discovered with. Until someone goes and checks other vendors products, no one will know.
  
  0 0
Monday 25th July 2011 08:32 GMT Andy Farley

Making things clever

is often really dumb.

0 0
Monday 25th July 2011 10:35 GMT johnnymotel

the original article...

http://blogs.forbes.com/andygreenberg/2011/07/22/apple-laptops-vulnerable-to-hack-that-kills-or-corrupts-batteries/

I would say that other vendors using similar batteries will have a similar issue as Apple. Miller is a Mac security expert and only looks at Mac. The fact that he is the first to discover it, indicates how obscure this attack is. However, I am certain that Apple and others will produce at update to create a random password.

I am certain Mr Miller had direct access via Terminal to do this hack.

So long as Mac users run their main account as Standard and not Admin, intelligent users are well protected, plus if the upgrade to Lion they will be even more protected.

0 0
Monday 25th July 2011 11:28 GMT ColonelClaw

Nothing to see here

Next it will be "MACBOOK IS SUSCEPTIBLE TO ATTACK FROM NAKED LUNATIC WITH AXE"

I'm willing to bet a new Macbook Air that this 'vulnerability' will never be exploited, this being barrel-scraping at it's finest.

0 0
Wednesday 27th July 2011 23:36 GMT Alexander Rogge

Airport security trouble

Wait until airport security finds out about this. We've seen the Dell batteries catching fire, and now we find out that laptop batteries can be hijacked remotely and set to explode. No more laptops on planes, and this after the MacBook Air just got the Transportation Security Administration's approval for carry-on luggage without suspicion.

0 0