Mojo_Thor: Apple EFI malware updated for T2

Regarding this Apple EFI malware: https://firmwaresecurity.com/2017/12/03/efivalidate-and-mojo_thor/

most code activity was in 2017, but there’ve been a few changes in the last few weeks, mostly related to the new Apple T2 processor:

https://github.com/rickmark/mojo_thor/commits/master

https://github.com/rickmark/mojo_thor

Apple security readers: it looks like you still need to follow-up with author, see the readme.

PS: The author is also the author of efivalidate:

https://github.com/rickmark/efivalidate

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s