←back to thread

420 points speckx | 2 comments | | HN request time: 0.015s | source
Show context
porphyra ◴[] No.44533210[source]
There are also shops in China that will upgrade the SSD in a mac mini for cheaper and they will do all the work of the DFU restore etc.
replies(3): >>44533225 #>>44533294 #>>44533743 #
ttul ◴[] No.44533225[source]
And when the machine arrives back in the States, it even has a fresh CPC ROM soldered onto the back of the SOC!
replies(4): >>44533283 #>>44533301 #>>44533357 #>>44533397 #
hollerith ◴[] No.44533397[source]
I'm not a security researcher, but I get the distinct impression that Apple's hardware security is good enough that if you actually had an evil-maid attack on the M4 Pro Mac mini, it would instantly become the hottest news in the security community.
replies(3): >>44534237 #>>44536090 #>>44539601 #
1. throwaway31131 ◴[] No.44539601[source]
Umm… what’s an evil-maid attack? Sounds like a b-horror film. :)
replies(1): >>44540824 #
2. adrian_b ◴[] No.44540824[source]
An "evil-maid attack" is the name used for the case when the attacker has unrestricted direct physical access for a short time to the computer, like it may be the case for the personnel who cleans the office or home in the absence of the computer users (or as it may be the case at some border control points if a laptop/smartphone is taken by the authorities for a checking done in another room, where the owner is not present).

With direct physical access, a lot of things can be done which cannot be done remotely, e.g. attempting to boot from an external device, possibly using hardware fault injections to bypass protections against that, attempting to read data that has not completely decayed from the DRAM modules, replacing some hardware component or inserting an extra component that would enable spying in the future, making copies of an encrypted SSD/HDD with the hope that after making other copies of it in the future that will enable breaking the encryption , if that is done using an encryption mode that does not protect against this kind of attack, and so on.