Thunderspy is stealth, meaning that you cannot find any traces of the attack.

All Thunderbolt-equipped systems shipped between 2011-2020 are vulnerable.

However, some systems that provide Kernel DMA Protection, shipping since 2019, are partially vulnerable.

thunderbolt vulnerability

like notethat the vulnerabilities cannot be fixed with a software update.

Intel, Apple, and 11 OEMs/ODMs and the Linux kernel security team have been notified about the issues.

In the report, they discussed issues related to invasive physical attacks on ThunderboltTM hosts and devices.

spot_img

The researchers did not demonstrate successful DMA attacks against systems with these mitigations enabled.

just check with yoursystem manufacturerto determine if your system has these mitigations incorporated.

For additional resources, refer to theMicrosoft articleon ThunderboltTM Security in Windows 10 and thecorresponding articlefrom Intel in 2019.

source: www.techworm.net