The Apple ecosystem has good and bad news, specifically regarding the company's M1 chip. The bad news is that researchers have discovered a security flaw in the chip's design that cannot be fixed without redesigning the chip itself.

This flaw allows two malicious apps on a machine utilizing an M1 chip to set up a covert communications channel and communicate with each other.

As bad as it sounds, the significant silver lining in the equation is that unless two separate forms of malware have compromised your machine by other means, the exploit is entirely useless.

Although harmless on its own, the exploit is still a big deal. It is essential to Apple engineers, who said outright that the concept of covert communications on any level violates the company's OS security model. Unfortunately, even given that, the company has not come out and said whether a redesign of the M1 is in the works or when that process might be completed.

In any case, if two different pieces of malware have infected your M1-based machine, you've got more significant problems than worrying about whether they're communicating. So this flaw is almost certainly not reason enough, on its own, to prompt potential buyers to steer clear of the M1.

It is something of a black eye to Apple, though. All through its development cycle, the company claimed that the M1 would be the most advanced and secure chip on the market when released. A flaw like this that's baked into the silicone itself is an undeniably clear refutation of those claims. In light of that, it's almost certain that the company will address the issue one way or another, even if they haven't yet released a timetable for doing so.

Used with permission from Article Aggregator