Skip to main content
  1. Home
  2. Computing
  3. News

Report reveals vulnerabilities in Mac firmware affecting thousands of computers

Add as a preferred source on Google

A team of researchers at Duo Security revealed that there are some issues with Apple’s application of firmware updates, which has resulted in some users being left with out of date EFI firmware.

The researchers analyzed 73,000 Mac devices and found that Apple’s security updating process was not working as the company intended. They found that a little over four percent of those computers were running with outdated Apple firmware, despite having received recent updates. Duo’s report didn’t give the exact cause of the problem, but simply noted that for “some reason” the EFI firmware was not being updated when the computers in question received security or OS updates.

Recommended Videos

Firmware is the software which runs underneath the OS and controls the computer when it is booting up. Security issues within firmware can be difficult to notice, which often makes it a target for more advanced hackers. Duo noted that average home users have little reason for concern, due to the fact that the complexity of firmware attacks usually relegates hackers to target enterprises and other valuable entities.

“If you’re a home user with a Mac that falls into one of the above categories as their personal computing device, then the sky isn’t falling for you, in our opinion,” Duo said. “Attacks against EFI have so far been part of the toolkit used by sophisticated adversaries who have specific high value targets in their sights.”

Duo did caution that enterprise users should take some extra precautions. In addition to ensuring that all their Macs ran the latest version of Mac OS, the security company advised phasing out, or at least isolating, those computers which were not eligible for the most recent security updates.

For its part, Apple has worked to improve its firmware and patch security vulnerabilities as they arise.

“We appreciate Duo’s work on this industry-wide issue and noting Apple’s leading approach to this challenge,” an Apple spokesperson told Gizmodo. “Apple continues to work diligently in the area of firmware security and we’re always exploring ways to make our systems even more secure. In order to provide a safer and more secure experience in this area, macOS High Sierra automatically validates Mac firmware weekly.”

Eric Brackett
Former Digital Trends Contributor
DuckDuckGo’s browser now blocks the YouTube ads everyone hates
DuckDuckGo adds a Brave-like YouTube ad blocking feature
Text, Aircraft, Airplane

DuckDuckGo has spent the past few months gaining fresh attention as more users look for alternatives to Google’s increasingly AI-heavy Search experience. Now, the privacy-focused company is adding a feature that could make its browser even more tempting for everyday use. DuckDuckGo says its browser can now block most video ads, including those on YouTube, when a video is playing inside the browser.

What’s happening?

Read more
ChatGPT Live could make talking to AI feel straight out of the movies
We might finally get the AI sidekick sci-fi movies promised
Elderly women using ChatGPT live on a smartphone

AI voice assistants have been chasing the sci-fi dream for years, but they still have a hard time holding a conversation with humans. Most voice systems still need clear turns, clean pauses, and a few seconds before they respond. OpenAI is now rolling out GPT-Live, a new voice model for ChatGPT Voice that is designed to make those exchanges feel faster and less scripted.

The main upgrade is what OpenAI calls a full-duplex architecture. In simpler terms, GPT-Live can listen and speak at the same time. It continuously processes what the user is saying while also generating its own response, allowing it to decide when to talk, when to pause, when to keep listening, and when to use a tool.

Read more
A broken Galaxy Fold 5 just became the Pixel desktop future I want Google to steal
A broken Galaxy Fold 5 became a tiny PC because Samsung already built the desktop mode Google keeps treating like a side quest.
Desktop mode within Android 16.

A broken Galaxy Fold 5 should be a sad little monument to modern gadget math. One busted outer display, one repair bill nobody wants to inspect too closely, and suddenly a powerful foldable starts heading toward a drawer. Instead, a Redditor turned one into a glowing acrylic DeX box with spare parts, fans, a USB hub, and the kind of LED lighting that makes every homebrew computer look mildly illegal.

https://www.reddit.com/r/SamsungDex/comments/1upica7/fold_5_dexbox/

Read more