Hacker Shows Us How to Unlock a Laptop Using an NSA Tool [video]

They exploit Thunderbolt, whose insecure &quot;All your memory are belong to us&quot; model is known. I wonder what the attackers would use on a non-Thunderbolt laptop (say, a ThinkPad, or a regular Dell&#x2F;HP&#x2F;What-Have-You).<p>Of course, using an Apple laptop to demo this makes a lot of sense: they are popular, almost ubiquitous, and they provide an external vector to full, direct memory access. But I don&#x27;t think the scare factor holds up on a non-Apple device.

If you have physical access it&#x27;s game over.<p>FireWire had this issue, so did express card, heck even if you don&#x27;t have TB, express card or any other PCIe external interface.<p>Open the laptop and either find an empty microPCIe slot or pull out the wireless card there is some risk of a BSOD but it works in many cases and voila you have DMA.<p>That said bot Intel and AMD do have ways of encrypting memory regions which can prevent DMA attacks.<p>Windows 10 has DMA port protection which enables the OS to restrict DMA access from external ports this is available from build 1507 but I&#x27;m not sure if it&#x27;s enabled by default.<p>Edit: looks like this is enabled by default when Bitlocker is enabled on recent builds.

some links related:<p>- <a href="https:&#x2F;&#x2F;www.defcon.org&#x2F;images&#x2F;defcon-22&#x2F;dc-22-presentations&#x2F;Fitzpatrick-Crabill&#x2F;DEFCON-22-Joe-FitzPatrick-Miles-Crabill-NSA-Playset-PCIe.pdf" rel="nofollow">https:&#x2F;&#x2F;www.defcon.org&#x2F;images&#x2F;defcon-22&#x2F;dc-22-presentations&#x2F;...</a><p>- <a href="https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=OD2Wxe4RLeU" rel="nofollow">https:&#x2F;&#x2F;www.youtube.com&#x2F;watch?v=OD2Wxe4RLeU</a>

Cool. I want that for Christmas.