WikiLeaks continues to declassify government documents and recently released a huge batch of data again. The new version, called “Dark Matter"(Dark Matter) contains documents presenting various projects carried out by the CIA to infect computers Apple and iPhones.
Attacking Macs is considered a serious problem, as the EFI (Extensible Firmware Interface) is directly infected. EFI can be described as a kind of interface between the firmware of the hardware used and the operating system. This infection does not disappear even after reinstalling the system.
You could be interested in
The "Sonic Screwdriver" project (aptly named after a Doctor Who device) is dangerous in that it can easily infect other systems. The project can be started from a USB stick or even from a reducer Apple Thunderbolt-to-Ethernet that has modified firmware. According to the documents, the attack can occur even if the computer is locked with a firmware password. This exploit is very similar to the one discovered by Pedro Vilaca in the middle of last year.
Another exploitative CIA project stems from remaining persistent EFIs after installation. Extensible Firmware Interface (EFI) is for Apple something like BIOS for PCs. It is “baked in” to every Mac. Even when reinstalling the system from scratch, the EFI is not removed or cleaned. In the “Dark” edition Matter"Wiki"Leakshares that DakrSeaSkies is implemented into MacBooků Air. They claim that it is a combination of DarkMatter, SeaPea and NightSkies tools that implement themselves into the EFI, kernel and user.
You could be interested in
Potentially even scarier in this version is a guide to the NightSkies tool made specifically for iPhone. NightSkies 1.2 has been Wiki compliant since 2008.Leaks specifically designed to be installed on "fresh" iPhones straight from the factory. This led WikiLeakThere is speculation that the CIA has been infecting the iPhone supply chains of its targets since at least 2008.
However, Will Strafach, a security researcher, took to Twitter to remind others that none of these vulnerabilities are new and that we shouldn't be concerned. From a brief summary provided by WikiLeakThe release also reveals that all of these vulnerabilities require physical access to the victims' machines. While these bugs may already be fixed, there is still the question of what else is yet to be discovered.
Source: 9to5Mac
Shocking revelation! Secret services can get into all kinds of devices.
I'd be shocked if they couldn't.