Two Mac viruses strike at the heart of the platform’s secure image. ‘Thunderstrike 2’, a worm which moves from Macbook to Macbook using hardware, joins privilege escalation bug seen in the wild for the first time

One exploit allows a malicious program that gains access to a Mac to run as though it is the administrator of the computer – a vulnerability known as “privilege escalation”.
The second about to be revealed to researchers at the Black Hat security conference in Las Vegas. It uses a bundle of weaknesses in the firmware of a computer, the embedded operating system which runs the lowest-level functions such as fans, power supply units, and USB ports, and lets the researchers overwrite that software with their own code, and five of these six weaknesses are present on Macs as well as PCs.