You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
I described from the top of the piece exactly what's required for the attack. (Which doesn't include soldering, by the way) It's a new, invasive, physical access hacking technique, no more, no less.
Here we go again. Do you know what a threat model is? Do you realize there are approximately two dozen other ways you could completely compromise a laptop after opening the case like that? Does it make sense then that the headline is total clickbait?
The problem with the infosec clickbait media isn't accuracy (well, that too, sometimes), is that all you guys do is eat up and parrot overhyped research and turn it into scaremongering, and laymen have no idea it's not a big deal.
Proper journalism isn't just being accurate, it's being able to accurately convey to a layperson the importance of the news, and to what extent they should be worried. And the infosec news media continuously, utterly, and completely fails at this. It's an endemic problem.
Yep, I do know what a threat model is! And described exactly what's necessary to carry out the attack in the piece, so users can judge for themselves if they should be scared. If there are 24 other previously known unpatchable ways to do this attack, that is actually news to me.
If you want to own a computer by opening the case, all you need to do is flash the BIOS chip. Or the firmware chip of any device with DMA access. Or any internal device with no DMA access but a buggy driver (i.e. most). Or just hijack a bus like LPC. The list goes on.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
