- Jul 22, 2014
- 2,525
Some Macs running up-to-date versions of their operating system may not be running the latest EFI firmware version, exposing users to firmware attacks, according to a 63-page report published today by security researchers from Duo Labs.
Experts made this discovery after collecting and analyzing telemetry data from over 73,000 real-world Mac systems. Researchers focused on Macs because of Apple's almost full control over their systems' hardware, unlike the world of Windows and Linux where users are entirely responsible for keeping their firmware up to date.
Results of Duo's research showed that Apple has been doing a poor job at delivering EFI firmware updates after it started packaging OS and EFI firmware updates together back in 2015.
The study's main findings, summarized, are below. Full results are on page 24 of the Duo report.
...
Experts made this discovery after collecting and analyzing telemetry data from over 73,000 real-world Mac systems. Researchers focused on Macs because of Apple's almost full control over their systems' hardware, unlike the world of Windows and Linux where users are entirely responsible for keeping their firmware up to date.
Results of Duo's research showed that Apple has been doing a poor job at delivering EFI firmware updates after it started packaging OS and EFI firmware updates together back in 2015.
The study's main findings, summarized, are below. Full results are on page 24 of the Duo report.
...
