Computers vulnerable to attack through USB ports, report

[silversurfer]

Content source

https://www.scmagazine.com/home/security-news/vulnerabilities/computers-vulnerable-to-attack-through-usb-ports-report/

University of Cambridge and Rice University researchers have created a platform that allows cyberattacks to be conducted through a variety of computer peripherals through their USB-C port.

The platform, called Thunderclap, an open-source platform created to study the security of computer peripherals and their interactions with operating systems in computers with Thunderbolt ports, reported Scientific Daily. Computers running Windows, macOS, Linux and FreeBSD were all found vulnerable through their USB-C port.

The specific vulnerability derives from the fact that peripherals have direct memory access to the unit they are connected to which allows them to bypass the operating system’s security policies. While such attacks are not new and the systems feature input-output memory management units to protect against such attacks these are often turned off and can be bypassed Scientific Daily reported.

 

[Solarquest]

Thunderclap Vulnerabilities Allow Attacks Using Thunderbolt Peripherals

Modern computers that come with a Thunderbolt interface and run Windows, macOS, Linux, or FreeBSD are vulnerable to a range of Direct Memory Access (DMA) attacks performed by potential attackers with physical access to the device using malicious peripherals.

www.bleepingcomputer.com

 

[shmu26]

A default/deny solution should protect, right? I mean, before the malware can access memory, it needs to run a script or an exe, I would assume. Or maybe not, if it is a driver.