Unpatchable Security Flaw On Apple’s: M1 Chips Leaves its Last level of defense Vulnerable!

Read Time:1 Min, 4 Sec

Apple’s Arm-based M1 silicon vulnerability allows threat actors capability to gain arbitrary code execution on macOS systems. This was recently discovered by researchers at MIT’s Computer Science & Artificial Intelligence Laboratory.

It correlates to the hardware-level pointer authentication codes (PAC), which Apple uses to ensure programs attempting to execute code are safe.

ADVERTISEMENT

Is it game over for M1-based MacBook owners, though?

Not necessarily… just yet. There are reports that physical access to a machine is needed, though a remote attack is possible as well.

While this type of attack would lead to a kernel panic, crashing the entire system, PACMAN ensures that no system crashes occur and leaves no traces in logs. Threat actors first need to find a memory bug affecting software on the targeted Mac that would be blocked by PAC and that can be escalated into a more severe security issue after bypassing PAC defenses. Reference

ADVERTISEMENT: Content resumes below

You can find more technical details about this novel hardware attack on the dedicated site and in the “PACMAN: Attacking ARM Pointer Authentication with Speculative Execution” paper [PDF] that will be presented at the International Symposium on Computer Architecture on June 18.

Nevertheless, the researchers say their findings have important implications for designers considering implementing Pointer Authentication in future products.

Last Updated on 06/11/2022 by Emmanuel Motelin

EXPLORE MORE ACROSS THE WEB

Tagged : # # # # # # # # #

ADVERTISEMENT: Learn more

MOTELIN.ORG – Emmanuel Motelin (Official Website)

Emmanuel Motelin primarily focuses on new innovation in computational technology & security.


ADVERTISEMENT


bitcoin
Bitcoin (BTC) $ 16,836.47 0.82%
ethereum
Ethereum (ETH) $ 1,233.93 1.27%
tether
Tether (USDT) $ 1.00 0.01%
bnb
BNB (BNB) $ 283.80 1.63%
usd-coin
USD Coin (USDC) $ 1.00 0.01%
binance-usd
Binance USD (BUSD) $ 1.00 0.09%
xrp
XRP (XRP) $ 0.383211 1.66%
dogecoin
Dogecoin (DOGE) $ 0.0959 3.37%
cardano
Cardano (ADA) $ 0.309037 2.16%
matic-network
Polygon (MATIC) $ 0.888115 1.85%
polkadot
Polkadot (DOT) $ 5.27 3.41%
staked-ether
Lido Staked Ether (STETH) $ 1,219.55 1.21%
litecoin
Litecoin (LTC) $ 77.13 1.32%
shiba-inu
Shiba Inu (SHIB) $ 0.000009 1.67%
okb
OKB (OKB) $ 20.92 0.61%
dai
Dai (DAI) $ 1.00 0.07%
solana
Solana (SOL) $ 13.60 3.44%
tron
TRON (TRX) $ 0.053269 0.20%
uniswap
Uniswap (UNI) $ 6.00 1.55%
avalanche-2
Avalanche (AVAX) $ 13.20 2.28%
leo-token
LEO Token (LEO) $ 3.78 3.78%
chainlink
Chainlink (LINK) $ 6.85 3.00%
wrapped-bitcoin
Wrapped Bitcoin (WBTC) $ 16,776.23 0.96%
cosmos
Cosmos Hub (ATOM) $ 9.56 4.96%
the-open-network
The Open Network (TON) $ 1.82 2.04%
ethereum-classic
Ethereum Classic (ETC) $ 18.71 3.36%
monero
Monero (XMR) $ 141.96 0.71%
stellar
Stellar (XLM) $ 0.084283 1.75%
bitcoin-cash
Bitcoin Cash (BCH) $ 109.19 0.88%
quant-network
Quant (QNT) $ 116.90 3.27%
crypto-com-chain
Cronos (CRO) $ 0.064296 2.70%
algorand
Algorand (ALGO) $ 0.221497 5.17%
filecoin
Filecoin (FIL) $ 4.32 5.27%
near
NEAR Protocol (NEAR) $ 1.69 4.53%
apecoin
ApeCoin (APE) $ 3.88 6.68%
vechain
VeChain (VET) $ 0.018738 1.90%
hedera-hashgraph
Hedera (HBAR) $ 0.046973 2.55%
internet-computer
Internet Computer (ICP) $ 4.18 4.58%
eos
EOS (EOS) $ 0.999212 5.35%
flow
Flow (FLOW) $ 1.04 5.92%
elrond-erd-2
MultiversX (Elrond) (EGLD) $ 44.12 2.33%
frax
Frax (FRAX) $ 0.999568 0.01%
trust-wallet-token
Trust Wallet (TWT) $ 2.45 5.53%
terra-luna
Terra Luna Classic (LUNC) $ 0.000165 2.66%
axie-infinity
Axie Infinity (AXS) $ 8.62 4.11%
the-sandbox
The Sandbox (SAND) $ 0.58064 4.87%
tezos
Tezos (XTZ) $ 0.987556 2.41%
theta-token
Theta Network (THETA) $ 0.873775 2.72%
aave
Aave (AAVE) $ 60.83 3.51%
huobi-token
Huobi (HT) $ 6.33 4.22%
%d bloggers like this: