Unlike its counterpart, Thunderstrike 1, version 2 of Thunderstrike 2 doesnt require any physical access to your Mac. This is a proof of concept where by using a software exploit the boot flash can be infected. This infects thunderbolt option roms and then the resume script or SMM. What does this mean in the real world. Don;’t randomly click or runanything you arent 100% sure about, but you do that anyway right?

Continue reading → Thunderstrike 2 Firmware Worm Partially Patched