Apple Laptop Security Flaw Found In Computer Batteries

A security researcher claims to have found a new security flaw in Apple laptops that could allow hackers to ruin laptop batteries, infect them with malware or potentially cause them to overheat and catch fire. Charlie Miller, principal research consultant at Accuvant Labs, said he has found a way to manipulate chips embedded inside Apple laptop batteries.

The chip monitors the battery’s temperature and level of charge, among other things. Those chips can be remotely controlled by hackers using a default password that Miller found on a website of the chip’s creator, Texas Instruments. Apple never changed the default password.

This is the latest potential security flaw found in Apple’s product line. Earlier this month, security experts disclosed a bug in Apple’s iOS operating system that could allow criminal hackers to gain remote access to iPhones, iPads and iPod Touch devices, Reuters reported. Apple said it is fixing that issue in an upcoming software update.

At the very least, Miller found he could ruin laptop batteries by altering the chip’s code. Not wanting to set his home on fire, Miller stopped there. But he imagines darker possibilities for hackers if Apple does not fix the security flaw.

Miller claimed he has full access to the battery and can make any changes he wants to. For example, hackers could install malware on the battery that would not be detected by anti-virus software because it would not appear on the hard drive. The malware could attack the laptop’s operating system again and again, even after the user installed a new hard drive. The battery would keep attacking it.

Miller, a former security researcher for the National Security Agency, said it’s possible that Apple has taken extra security measures to prevent that from happening, or worse, causing a battery to overheat and catch fire. He said he reported his findings to Apple but did not hear back.

Miller wrote a paper on the security flaw that he plans to present at the Black Hat security conference in August in Las Vegas, where he also plans to unveil a solution called a “Caulkgun” that changes the battery’s default password.

While the security flaw presents a potential danger, most users should not be overly concerned about a hacker taking over their laptop battery.

Advertisements

About SCB Enterprises
System Solutions and Integration

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: