PDA

View Full Version : New BIOS Attack Might Allow Malware Survive Hard-disk Format And BIOS Reflashing



Upper Decker
03-27-2009, 01:42 PM
http://cyberinsecure.com/new-bios-attack-might-allow-malware-survive-hard-disk-format-and-bios-reflashing/

Todays act of douchbaggery, infect your bios with annoying porn popups so no matter what you do, they will always come back

SSMguy2009
03-27-2009, 03:15 PM
Yeah.....thats all we need. Now Dell and other OEM's can install this malware into the BIOS to improve their marketing techniques. It used to be just simple programs installed during the first time bootup that can be uninstalled. Now in some cases I recommend a format/reinstall with an OS CD.

Hans
03-27-2009, 04:04 PM
I think that's just a bunch of fluff to draw some media attention. While it's possible to add code to a flashrom to infect a computer, the problem is you need to flash that rom. There's many different sizes of flashrom out there, so it would become cumbersome and difficult to write a program to infect them all.

It would be much easier to erase the flashrom and force a reboot. It would render your machine completely useless, unless you have a way to recover from a bad flash. It would also be much easier to do, as it would just require code to erase the flash, not to erase and reprogram it.

Madmax
03-27-2009, 04:38 PM
First off the attacker needs access to te machine, direct access meaning sitting at it to infect it ("you need either root privileges or physical access to the machine in question"), but if they come up with a driver to drop a root access to the system. Then your pretty much screwed.

You can flash the bios all you want and it will continue to come back as that code will not get erased once it is in the bios.

This i can see governments wanting to have for sure ... to compromise other agencies machines.

Hans
03-27-2009, 04:45 PM
It's a flashrom, so if you erase it the code is gone. There's no way the code can prevent that.