All MacBook batteries can be hacked, fix coming August

Charlie Miller is a well-known and active hacker due to his regular hacks of popular web browsers at CanSecWest. But his latest discovery is a hack found where no one else would ever bother looking: the battery of an Apple laptop.

Miller has discovered that the chips used to monitor the rechargeable batteries in Apple’s MacBook, MacBook Pro, and MacBook Air lines can be hacked with serious consequences.

The reason a hack is possible is due to the fact that no one ever bothered to secure those battery monitoring chips against possible attack. Surely no one would try and use a battery microcontroller to infiltrate a system, right? Of course they would if it meant complete control of a laptop was possible.

That’s exactly what Miller has been able to achieve. By reverse engineering the firmware used for the chips he can tell the laptop anything he wants about the state of a battery. That makes it very simple to render the battery unusable and requiring the user to buy an expensive replacement. Although he didn’t attempt it, overloading the battery to the point where it overheats causing damage is also feasible.

It gets worse, though. Instead of relaying battery status updates to Mac OS, Miller believes it would be possible to inject malware on to the system through the chip. That would allow a system to be infected with malware without any user interaction at all. Because the malware installation is controlled by the chip it is also very difficult to get rid of. You could format your entire system only to have the malware reinstall itself on the next boot clean system boot.

Miller will be presenting his findings at the BlackHat security conference next month. He is also going to give details of how to apply a fix which I’m sure Apple will be very interested to hear about. It is expected to simply replace the default password on each chip with a random string of characters so that every laptop is different, therefore rendering any such hack useless.

For the moment, it seems unlikely this is a vulnerability being used by hackers. The discovery involved Miller first having to find two passwords relating to the chips in a 2009 Apple software update, then he reverse engineered the firmware they used, and then he started experimenting to see what could be achieved. In the process he bricked around $900 worth of batteries.

This entry was posted in Tinydeal News and tagged , , , , . Bookmark the permalink.

5 Responses to All MacBook batteries can be hacked, fix coming August

  1. Anonymous says:

    I always spent my half an hour to read this web site’s articles or reviews all the time along with a cup of coffee.

  2. payday loans says:

    Do you have a spam issue on this site; I also am a blogger, and I was wanting to know your situation; we have developed some nice methods and we are looking to trade solutions with others, why not shoot me an email if interested.

  3. Bulk sms says:

    I think this is among the most significant info for me. And i am glad reading your article. But want to remark on some general things, The site style is wonderful, the articles is really excellent : D. Good job, cheers

  4. click says:

    This is really interesting, You are a very skilled blogger. I’ve joined your rss feed and look forward to seeking more of your excellent post. Also, I’ve shared your website in my social networks!

  5. registered says:

    Simply want to say your article is as astounding. The clearness in your post is just nice and i can assume you’re an expert on this subject. Well with your permission let me to grab your feed to keep up to date with forthcoming post. Thanks a million and please continue the enjoyable work.