Researchers: Rootkits headed for BIOS

Researchers: Rootkits headed for BIOS
Robert Lemos, SecurityFocus 2006-01-26

ARLINGTON, Virginia -- Insider attacks and industrial espionage could become more stealthy by hiding malicious code in the core system functions available in a motherboard's flash memory, researchers said on Wednesday at the Black Hat Federal conference.

Expand all | Post comment

Researchers: Rootkits headed for BIOS 2006-01-26
Tom Arnold

Researchers: Rootkits headed for BIOS 2006-01-26
Anonymous

Researchers: Rootkits headed for BIOS 2006-01-27
cowbutt

Researchers: Rootkits headed for BIOS - Jumper fo rflashing? 2006-01-27
Jim Gorski (2 replies)

Re: Researchers: Rootkits headed for BIOS - Jumper fo rflashing? 2006-01-27
Anonymous

Re: Researchers: Rootkits headed for BIOS - Jumper fo rflashing? 2006-01-27
thejynxed

Researchers: Rootkits headed for BIOS 2006-01-27
mubix

Researchers: Rootkits headed for BIOS 2006-01-27
Yvan Boily

Researchers: Rootkits headed for BIOS 2006-01-27
Bela from VA (1 replies)

Re: Researchers: Rootkits headed for BIOS 2006-01-27
Robert Lemos

It wouldn't be that easy!!! 2006-01-27
janice

Quibble - rootkit for OS X 2006-01-27
Anonymous (1 replies)

Re: Quibble - rootkit for OS X 2006-01-30
Anonymous

Researchers: Rootkits headed for BIOS 2006-01-27
Gimping 8600

Not actually 2006-01-27
Prisoner (1 replies)

Re: Not actually 2006-06-24
Anonymous

Researchers: Rootkits headed for BIOS 2006-01-28
Anonymous

Researchers: Rootkits headed for BIOS,done in 99 2006-01-29
Anonymous

Researchers: Rootkits headed for BIOS 2006-01-29
Anonymous (3 replies)

Re: Researchers: Rootkits headed for BIOS 2006-01-30
sk8r (2 replies)

Re: Re: Researchers: Rootkits headed for BIOS 2006-01-31
Anonymous

Re: Re: Researchers: Rootkits headed for BIOS 2006-02-03
Anonymous (1 replies)

Re: Re: Re: Researchers: Rootkits headed for BIOS 2006-03-08
Anonymous

Re: Researchers: Rootkits headed for BIOS 2006-07-28
ABG

Re: Researchers: Rootkits headed for BIOS 2006-11-19
hylas

I also speak from experience, ... on Macintoshes.

" ... hacked windows files stored in the hidden drive areas marked as bad sectors or obscured through geometry changes. Any reinstall would start normally from the cd, but you would observe at some point foreign (unsual) files and drivers begin to load. All ACLs were changed and since the malware had control at the bios level virtually all drivers were controlled at the lowest level."

This has also been my experience (strange to see someone else confirm this after being called (insert insult). Starting in '97 on a 68k Macintoshes and then in Nov (?) '05 on Xserves, G4s G5s, etc.

Seems to have AI underpinnings as it operates autonomously (SOAR?) It also uses the clipboard extensively, microcode in "bad boot blocks" font as "worlds" - opening sockets (ports) for internal/external message passing.

Follow this:

http://it.slashdot.org/comments.pl?sid=207252&cid=16899958

... for a sample of what I've commented previously (as I've just found this article).

hylas

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11372/34206#34206

Researchers: Rootkits headed for BIOS 2006-02-06
Anonymous

Researchers: Rootkits headed for BIOS 2006-02-07
Samuel Stetler

Researchers: Rootkits headed for BIOS 2006-02-13
Black~Feather (1 replies)

Re: Researchers: Rootkits headed for BIOS 2007-03-07
Anonymous

Researchers: Rootkits headed for BIOS 2006-03-25
CONFIRMED ROOTKIT TROJAN / SCRIPTING IN BIOS (5 replies)

Re: Researchers: Rootkits headed for BIOS 2006-03-29
Anonymous

Re: Researchers: Rootkits headed for BIOS 2006-07-28
ABG

Re: Researchers: Rootkits headed for BIOS 2006-11-19
hylas

Re: Researchers: Rootkits headed for BIOS 2007-06-11
Anonymous

Re: Researchers: Rootkits headed for BIOS 2007-07-09
Burnt-out-User

I believe I have a way to defeat it...The problem is will you believe me! 2006-04-04
Mike (2 replies)

Re: I believe I have a way to defeat it...The problem is will you believe me! 2006-04-26
Anonymous