AOA Forums AOA Forums AOA Forums Folding For Team 45 AOA Files Home Front Page Become an AOA Subscriber! UserCP Calendar Memberlist FAQ Search Forum Home


Go Back   AOA Forums > Software > Data Security

Data Security Viruses, Firewalls and Safe computing


Reply
 
LinkBack Thread Tools Rate Thread
  #1 (permalink)  
Old 16th April, 2009, 10:38 AM
PorPorMe's Avatar
Member
 
Join Date: January 2008
Location: Othello, Wa
Posts: 3,207

I stumbled on this, Bios attacks

http://threatpost.com/blogs/research...attack-methods

March 19, 2009, 11:41 AM
Researchers unveil persistent BIOS attack methods

Apply all of the browser, application and OS patches you want, your machine still can be completely and silently compromised at the lowest level--without the use of any vulnerability.
Attached Thumbnails
I stumbled on this, Bios attacks-digital_underground.png  
__________________
AOA Team fah


1ST * Asus M5A99FX Pro r 2.0 *AMD FX 8350 Black Edition *Cooler Master MasterLiquid 240 CPU Cooler * Crucial 16g DDR3 * MSI Geforce GTX 1050 * Antec 650w* Thermaltake V9 Case
2nd Asus M5A99fx Pro R2.0 Mainboard *AMD FX 4300 Black edition * l6g Crutial DDR3 * Evga Geforce Gt 730 * Coolermaster Dual fan HSF * 500w Thermaltake PSU * 320g western digital HDD



Last edited by PorPorMe; 16th April, 2009 at 11:00 AM. Reason: Messed up!
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #2 (permalink)  
Old 16th April, 2009, 05:45 PM
Gizmo's Avatar
Chief BBS Administrator
BassTeroids Champion, Global Player Champion, Aim & Fire Champion, Puzzle Maniax Champion, Othello Champion, Canyon Glider Champion, Unicycle Challenge Champion, YetiSports 9: Final Spit Champion, Zed Champion
 
Join Date: May 2003
Location: Webb City, Mo
Posts: 16,178
Send a message via ICQ to Gizmo Send a message via AIM to Gizmo Send a message via MSN to Gizmo Send a message via Yahoo to Gizmo Send a message via Skype™ to Gizmo

Note the requirements:

"in order to execute the attacks, you need either root privileges or physical access to the machine in question"

Unix and Linux, by design, don't have a user running with root or 'admininstrator' privileges under normal conditions, so the attack couldn't work unless someone logged in with root privs and then executed the code.

Windows users, on the other hand, are typically set up with 'Administrator' privileges, meaning that applicatons they are running typically have complete access to the system. While Microsoft have largely addressed this with Vista's 'User Access Control', many complain that the solution is little better than the problem. However, UAC DOES mean that this attack should be pretty difficult to pull off against a Vista or Windows 7 machine as well, at least remotely.

If the attacker has local access to the machine, then all bets are off.

As I see it, the real worry here is going to be trusting that machine you just bought. What happens if some disgruntled employee tampers with the BIOS image at Dell?
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
  #3 (permalink)  
Old 20th April, 2009, 12:01 PM
Chief Systems Administrator
 
Join Date: September 2001
Location: Europe
Posts: 13,075

Write protect the BIOS?
__________________
Digg this Post!Add Post to del.icio.usBookmark Post in TechnoratiFurl this Post!
Reply With Quote
Reply



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Thread Tools
Rate This Thread
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are On


Similar Threads
Thread Thread Starter Forum Replies Last Post
AMD attacks Intel over benchmarks danrok Benchmarking 2 1st March, 2007 08:29 PM
Stumbled onto this tiamat63 Graphics and Sound cards; Speakers and other Peripherals 3 18th November, 2006 05:15 PM
Mumbai Terrorist Attacks aghastpumpkin Random Nonsense! 20 15th July, 2006 04:23 PM
Something i stumbled accrosed BMan Random Nonsense! 4 2nd February, 2003 01:43 AM
Intel attacks AMD over 32/64 bit plans Winkie Random Nonsense! 10 14th September, 2002 02:07 AM


All times are GMT +1. The time now is 11:45 PM.


Copyright ©2001 - 2010, AOA Forums
Don't Click Here Don't Click Here Either

Search Engine Friendly URLs by vBSEO 3.3.0