Acest virus rescrie cipul de flash al macului,facand astfel imposibila descotorosirea de acest virus!
Chiar daca formatam HDD sau SSD-ul,virusul va ramane in Mac,acesta incarcandu-se inaintea Kernelului si chiar a BootStrapului!
Apple does not follow Intel’s recommended best practices for protecting their firmware. Consequently Macs are vulnerable to being disabled in such a way that they can never be made bootable again either by attempting to boot off external media (like a DVD/USB) and reinstalling the OS, or by changing the entire HD/SSD with a known working one. The only way to recover from such attacks is to reflash the SPI flash chip with a known-clean copy of the firmware. This attack does not require physical presence. It can be launched via a remote connection to the system (e.g. SSH/VNC).
Acest exploit se bazeaza atat pe o vulnerabilitate a Firmware-ului EFI ,virusul patrunzand in mac prin portul Thunderbolt!
Aveti grija ce mail-uri deschideti,ce descarcati si ce pagini web vizitati!