WikiLeaks details more CIA hacks, includes Mac Thunderbolt vulnerability


Ars Technica:

The latest batch of files, dramatically named "DarkMatter" (after one of the tools described in the dump), consists of user manuals and other documentation for exploits targeting Apple MacBooks--including malware that leveraged a vulnerability in Apple's Thunderbolt interface uncovered by a researcher two years ago. Named "Sonic Screwdriver" after the ever-useful tool carried by the fictional Doctor of Dr. Who, the malware was stored on an ordinary Thunderbolt Ethernet adapter. It exploited the Thunderbolt interface to allow anyone with physical access to a MacBook to bypass password protection on firmware and install one of a series of Apple-specific CIA "implants."

This is an old exploit that has been addressed, so there's nothing to see here. The interesting part is that further documentation of known legitimate exploits gives further credibility to the cache of info.