Macbook battery firmware vulnerable to hijacking or worse

By Jeff Hughes July 22, 2011

Well-known Mac security gnat Charlie Miller, a researcher at Accuvant consultancy and co-author of The Mac Hacker’s Handbook, says he’s found a hole in MackBook security through a little-studied area—the battery.

According to a Forbes article, Miller says the easily overlooked weak point in an Apple Laptop’s security—be it Macbook, Macbook Air or Macbook Pro—is the firmware in a chip that controls the batteries. The microcontroller is what monitors power levels in a modern laptop, it allows the OS to check on the battery’s charge. The chip regulates heat and stops charging when the computer is off.

Miller’s Macbook vulnerability comes from the fact that these chips are shipped with default passwords. If these passwords are found, the firmware can be hijacked and controlled completely. The Accuvant security researcher says he found the two passwords while looking through a software update in 2009 that was intended to fix a problem with Macbook batteries.

With these keys to the firmware, he gained the ability to tell the OS and charger whatever he wanted. Miller ended up bricking seven batteries while messing around, and he believes that with malicious intent, criminals could install persistent malware on the chip which would steal data, or cause the computer to crash.

“You could put a whole hard drive in, reinstall the software, flash the BIOS, and every time it would reattack and screw you over. There would be no way to eradicate or detect it other than removing the battery,” he says.

Though there may be potential for the batteries to catch fire and even explode, the researcher says that the batteries he’s gone through have safeguards in place that should stop any serious damage from happening. Miller is planning to expose and provide a fix for the vulnerability at the August Black Hat security conference. He says he plans on releasing a tool called the “Caulkgun” that randomizes the firmware passwords, protecting against any exploitation.

Editors' Recommendations

Topics

Former Digital Trends Contributor

I'm a SF Bay Area-based writer/ninja that loves anything geek, tech, comic, social media or gaming-related.

Computing

MacBook Pro OLED: Here’s everything we know so far

Halo running on a MacBook Pro.

While many of Apple’s laptop rivals have embraced OLED screens, Apple has stuck firmly with mini-LED in its MacBook Pro -- and the results have been spectacular. As we said when we reviewed the M3 Max MacBook Pro, it has the best display out of any laptop, bar none.

Yet, there whispers that Apple is working on something even better: its own brand of OLED display that could take the MacBook Pro to the next level. It’s still early days, and there are all sorts of different rumors flying about, but it seems that something big is definitely in the works.

Computing

Here’s everything we know about the M4 MacBook Pro so far

An open MacBook Pro on a table.

With the launch of the M4 iPad Pro, you might be wondering what’s in the cards for the MacBook Pro. Is it following hot on the heels of Apple’s flagship iPad, or will we have a significant wait before Apple’s laptop gets an upgrade?

We’ve scoured the rumor mill to find the answer, as well as worked out what sort of performance, features and designs we can expect. If you’re interested in learning more about the upcoming M4 MacBook Pro, you’re in the right place.
Price and release date

Computing

This 13-inch MacBook Air deal cuts the price by $150

The screen of the MacBook Air M2.

For those who are on the hunt for MacBook deals, you may want to check out Best Buy's bargain for the 13.6-inch Apple MacBook Air M2. The model with 256GB of storage and 8GB of RAM is down to $849, following a $150 discount on its original price of $999. We don't think this offer will last long though, so if you want to take advantage of it, there should be no hesitation on your end -- add it to your cart and proceed with the checkout process as soon as you can.

Why you should buy the 13.6-inch Apple MacBook Air M2
The 13.6-inch Apple MacBook Air M2 isn't the latest model of the laptop, but it's still featured in our list of the best MacBooks as the MacBook for everyone. That's because with its reduced price -- which is even lower with Best Buy's discount -- the machine is a relatively budget-friendly option for those who are planning to switch to a MacBook or to upgrade from an older model to enjoy Apple's own silicon. The Apple M2 processor, combined with an eight-core CPU, eight-core GPU, and 8GB of RAM, provides incredible performance that will be able to handle even the most demanding tasks for work or school.