Serious Thunderbolt 3 Security Flaw Found

- Advertisement -

A new security flaw has been discovered that affects devices using the Thunderbolt interface. The vulnerability affects all the major platforms including MacOS and Windows. It has been dubbed as Thunderclap.

Thunderclap Thunderbolt 3 Security Flaw
IMAGE CREDIT: WIKIPEDIA

The discovery was the result of a joint research between the Department of Computer Science and Technology at the University of Cambridge, Rice University and SRI International. The operating system makers were warned well before the findings were disclosed publicly. The paper presentation took place at the Network and Distributed System Security Symposium (NDSS) in San Diego, California.

The vulnerability takes advantage of Direct Memory Access (DMA) enabled by Thunderbolt that allows its accessories access to the target device. If proper protections are not used, hackers can use that access to steal valuable classified data and run malicious codes.

- Advertisement -

According to paper published most modern computers are affected by this vulnerability which includes:

  • Machines with older versions of thunderbolt are also affected.
  • All Apple laptops and computers produced since 2011 are vulnerable, except the 12-inch MacBook.
  • Thunderbolt 3 is often supported via USB Type-C ports on modern laptops.
  • Many laptops designed to run Windows or Linux produced since 2016 are also affected.

Markettos and his team discovered the vulnerability in 2016 and have already released it to major operating system manufacturers to aide in a fix. Apple rolled out a patch for a specific part of the bug in macOS 10.12.4 the same year. Windows 10 version 1803 also protects against the vulnerability on a firmware level for newer devices.

Thunderbolt 3 Security Flaw

The best way to protect your device against Thunderclap is to disable all the thunderbolt ports. Also, avoid sharing publicly available accessories such as chargers as they can be altered to target devices.

- Advertisement -

Further reading:

- Advertisement -
Swetabh
I am simple, fun loving guy who is interested in everything from big combustion engines to smartphones, computer hardware etc.

Leave a Reply

Related posts

Latest posts

Motorola Edge S Goes Live For Reservation in China — SD 870, 105Hz Display Speculated

Motorola has been aiming to reimage itself back to its glory days and we've been tracking it ever since. Motorola earlier had promised to...

New Cyberpunk 2077 Patch Fixes More Bugs, But It’s Still Not Enough

CD Projekt Red has released a new 1.10 patch for Cyberpunk 2077, aimed at fixing more bugs across PC, consoles and Stadia. https://twitter.com/CyberpunkGame/status/1352743220481024001 This is the...

To Attract Mates Amidst Noise, these Frogs Wave their Arms and Legs

A species of Ecuadorian glass frog adapts itself to the noisy environment by using high-frequency croaking and visual signalling to attract mates. Find out more.

Next Article Loading