Security researchers warned that 2019 and Windows PCs with Thunderbolt access can be easily captured by cyber hackers by physical intervention. It was discovered by University of Eindhoven in the Netherlands and “Thunderspy called” attacks of sleep mode or locked state of the computer leads to bypass the password entry screen. Thus, the cyber hacker can open the computer without the need for a password.

The attack begins when the cyber pirate disassembles the bottom panel of the laptop with the help of a screwdriver. Then, with the device containing bad firmware attached to Thunderbolt, the lock screen is disabled and access to the computer is provided. Cyber ​​hackers can attack this computer in less than five minutes, especially on computers that they hack or access.

The Intel Thunderbolt interface has been seen in the past as an innovation that could create a security weakness. Providing very fast data transfer to external devices, Thunderbolt establishes direct access to the memory of computers to do this. In another security weakness that was discovered last year, it was found that all security barriers were exceeded if a device containing malware was connected to Thunderbolt ports of computers.

Reference: https://www.forbes.com/sites/zakdoffman/2020/05/17/microsoft-confirms-serious-new-windows-10-security-problem-says-go-buy-a-new-pc/#5137fef34347

ASSIST. PROF. DR. MERT ÖZARAR
Computer Engineering Department