[userbinator]

The attacker can essentially "seal" the firmware in by writing a modified BIOS that either skips executing option ROMs, or write-protects the flash before executing them (as Apple's firmware should've originally done); then you'd need to use hardware to reflash.

[ripa]

I see, thanks for the explanation! As written in the other response, hopefully we'll see an EFI upgrade fixing it soon.