Researchers from the Computer Science and Artificial Intelligence Laboratory at the Massachusetts Institute of Technology have reported the vulnerability for the first time. They promise more details at the International Computer Architecture Symposium in New York on June 18.

what is known

Apple’s M1 processors are used in most device models released last year and will be installed on some this year.

• The vulnerability was named Pacman in honor of the hero of the game of the same name. Runs the Pointer Authentication Codes (PAC) function.
• During an attack, a hacker can use his own malicious code to receive and manipulate memory pointers controlled by this feature, resulting in over the OS kernel and through it – will have full control over the entire device.
• The worst part is that the virus can enter the system not only locally, but also remotely. For example, with installed pirated software or after going to a link posted by hackers.

There is no information yet that Pacman is somehow used by attackers. Company Apple has known about the vulnerability for several months, but cannot fix it. The problem is reportedly “very fundamental” and lies in the architecture of ARM cores based on the Apple M1 and its modifications. Therefore, the M1 Pro and M1 Max are also likely at risk.

The team notes that the experiment was not replicated with other processors based on ARM technology. If the problem is broader, it could affect other chipmakers like Qualcomm and Samsung. On June 18, the MIT CSAIL team will present PACMAN: Attacking ARM Beacon Authentication with Speculative Execution, which outlines a new attack methodology.