On CBS.com: Share YOUR travel photos at Amazing Race
BNET Business Network:
BNET
TechRepublic
ZDNet

August 21st, 2006

MacBooks and death threats

Posted by Jason D. O'Grady @ 11:25 am

Categories: Apple, Hack, MacBook, Security, WiFi

Tags:

maynor-macbook-hack.pngThe soap opera of the MacBook that was hacked wirelessly takes another turn.

Back in early August hackers Jon "Johnny Cache" Ellch and David Maynor demonstrated how they exploited a defect in a wireless device driver to compromise a MacBook notebook computer. I blogged about the exploit and later updated my post when a video demonstration revealed that the hack was against a third-party WiFi card connected to the MacBook with a third-party USB card reader.

You are probably (correctly) asking yourself "Why on earth would anyone use a third-party WiFi card with a MacBook when it comes with WiFi built in." The answer to that question came from an interview of the duo by Brian Krebs:

During the course of our interview, it came out that Apple had leaned on Maynor and Ellch pretty hard not to make this an issue about the Mac drivers — mainly because Apple had not fixed the problem yet.

The next day I posted that the native MacBook WiFi card and device driver were indeed susceptible to the Black Hat exploit and that MacBook users should exercise caution when using public WiFi networks and keep Airport turned off when it’s not in use.

In today’s episode of MacBook Exposed fellow ZDNet blogger George Ou has taken a few journalists to task for promoting the HackBook story incorrectly leading to "a vicious orchestrated assault on researcher David Maynor and the company SecureWorks." The dissenters are upset because they claim that Maynor and SecureWorks falsified their research presented at Black Hat 2006.

When I contacted David Maynor by email and later phoned him late Saturday night, Maynor was very disturbed by the whole incident.  He had already been receiving hate mail and even death threats at the Black Hat convention but the threats had escalated with this latest fabricated story about him falsifying his research.

If you watch the video of the hack Maynor clearly states that he uses a third-party WiFi card (pictured), so Maynor and Ellch fabricated little (if anything) at all in their demo.

Jason D. O'GradyJason D. O'Grady is the editor of PowerPage.org, which has been publishing daily mobile technology news since December 1995. For disclosures on Jason's industry affiliations, click here or to view Jason's full profile click here.

Email Jason D. O'Grady

Subscribe to The Apple Core via Email alerts or RSS.

  • Talkback
  • Most Recent of 8 Talkback(s)
Agreed
That's my point in all this. My main objection has been the manner in which the original demo was conducted. According to later comments on the several blogs that support Maynor and Ellch (sp?), the... (Read the rest)
Posted by: rwahrens1952 Posted on: 08/25/06 You are currently: a Guest | | Terms of Use
Research better next time  rwahrens1952 | 08/21/06
Also add in...  tic swayback | 08/21/06
Someone isn't telling the whole story  icruise | 08/21/06
I'll second that..  flintwall | 08/22/06
pretty much sums it up  SquishyParts | 08/22/06
Better analysis here  georgeou | 08/22/06
Better? not so sure but at least civil.  Jim888 | 08/23/06
Agreed  rwahrens1952 | 08/25/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

Essential Topics Click Here

advertisement

Recent Entries

Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads

SmartPlanet

Click Here