• Your favorite

    Apple

    ,

    iPhone

    ,

    iPad

    ,

    iOS

    ,
    Jailbreak
    , and
    Cydia
    site.
  • Apple hires Security Experts who worked on Thunderstrike 2 exploit
    .

    Today, Apple has hired a few firmware security experts to its team which were behind the "deep system security" startup LegbaCore in November, an apparent effort to bolster platforms like iOS and OS X.



    Former LegbaCore co-founders Xeno Kovah and Corey Kallenberg were brought on by Apple to work on projects that are currently classified.

    Thunderstrike took advantage of a documented flaw in Thunderbolt Option ROM to insert nefarious EFI boot ROM code on any Mac with a Thunderbolt port. The follow-up Thunderstrike 2, based on code from LegbaCore research, used the same attack vectors, but installed a worm capable of replicating and transferring itself between Macs.

    Initially reported by MacRumors as an acquisition, it is more likely that LegbaCore simply shut down operations after Kovah and Kallenberg accepted jobs at Cupertino. LegbaCore had no valuable IP or tangible assets associated with its name.

    Xeno Kovah posted on his twitter
    What did Apple hire us to do? We can’t say. Well, we can probably say something like “low level security” (I don’t know our job titles)
    The timing of Kovah's tweets suggest Apple took notice of his work after the Thunderstrike 2 presentation and ultimately hired both LegbaCore cofounders in November. In a subsequent tweet, Kovah said they were working on "low level security" projects, but had yet to be given official titles.


    Original Source
    This article was originally published in forum thread: Apple hires Security Experts who worked on Thunderstrike 2 exploit started by caidens View original post
    Comments 2 Comments
    1. SpiderManAPV's Avatar
      SpiderManAPV -
      Not relevant to this article, but thanks for helping keep the site alive! Been good seeing updates here again.
    1. Caiden Spencer's Avatar
      Caiden Spencer -
      Quote Originally Posted by SpiderManAPV View Post
      Not relevant to this article, but thanks for helping keep the site alive! Been good seeing updates here again.
      Thank you for your feedback I'll be taking everything you've said onboard!!