Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

BIOS-level viruses and rootkits
http://www.tomshardware.com/news/bios-virus-rootkit-security-backdoor,7400.html ^ | 03/27/09 | Marcus Yam

Posted on 12/30/2009 8:33:14 PM PST by wendy1946

click here to read article


Navigation: use the links below to view more comments.
first 1-2021-4041-50 next last
A friend claims to have seen an actual instance of this in which a computer had to be put down and buried and some people are now recommending that any sort of online buying involving credit cards and/or banking business be done while booted from a bootable LINUX CD.

Anybody on FR know anything about this or have any ideas as to the feasibility of blocking access to the BIOS chips on common kinds of laptops, possibly via some motherboard jumper?

1 posted on 12/30/2009 8:33:16 PM PST by wendy1946
[ Post Reply | Private Reply | View Replies]

To: ShadowAce

Ping.


2 posted on 12/30/2009 8:35:27 PM PST by Born Conservative ("I'm a fan of disruptors" - Nancy Pelosi)
[ Post Reply | Private Reply | To 1 | View Replies]

To: wendy1946; Swordmaker
You were saying ...

Anybody on FR know anything about this or have any ideas as to the feasibility of blocking access to the BIOS chips on common kinds of laptops, possibly via some motherboard jumper?

I'm having to help a cousin (an older lady who just got a Windows laptop for a present) set up and maintain her computer.

I'm a Mac guy and I hate Windows... LOL... but I'll help out relatives when they need help. It's the latest operating system from Microsoft (since it's a brand new computer). About two years ago, I helped another cousin set up and maintain a Windows Vista computer...

It sure makes me very, very appreciative of the Mac OS X system and Apple's computers. They're wonderful in comparison.... :-)

But, I'll be interested in finding out about this malady for Windows, as I'll probably have to help her there, too (in order to prevent something going wrong there) -- but at least I don't have to worry about my Macintosh computer that way...

3 posted on 12/30/2009 8:38:30 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 1 | View Replies]

To: wendy1946
Motherboard jumpers and switches went out of style long ago. Manufacturers do not want Winders users to ever get inside the case, except MAYBE to add memory.

Personally like the idea to block BIOS access without physical access to system. Makes life miserable for network admins, but is good practice.

In reality, the best BIOS virii are written by government agencies who must not be named, both ours and the bad guys’ agencies.

4 posted on 12/30/2009 8:49:27 PM PST by texas booster (Join FreeRepublic's Folding@Home team (Team # 36120) Cure Alzheimer's!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Star Traveler

This family of viruses infects the BIOS. It’s active and infectious regardless of what OS is installed on the machine. Why do you believe your Mac is immune to this?


5 posted on 12/30/2009 8:53:56 PM PST by Omedalus
[ Post Reply | Private Reply | To 3 | View Replies]

To: Star Traveler; wendy1946

Anybody with some familiarity with computer systems would know that such a virus, were it to exist, would be independent of the operating system. This is especially true as Macs and many Windows machines run on the same hardware.

Also, you could look at their presentation; buried all the way on page 3 is the bullet point that such a virus would be OS-independent. Their presentation mentions attacks on both Windows-based and Unix-based machines.

The important thing to note is that BIOS attacks are at least a decade old (if not older) and are very difficult to execute. This is because you need physical access to the machine (or the ability to install programs at root level). Most BIOSes these days are write-protected, meaning you need to explicitly allow writing before any such attack would work.

I guess the important thing to note is that no hacker would bother with this when they can easily and quickly fool hundreds of thousands of people into installing malware on their systems. BIOS attacks are interesting from an academic or theoretical standpoint but it’s important to note that they are not new and there is very little (almost zero) risk of being affected by one.


6 posted on 12/30/2009 8:56:10 PM PST by flintsilver7 (Honest reporting hasn't caught on in the United States.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: flintsilver7
You were saying ...

Anybody with some familiarity with computer systems would know that such a virus, were it to exist, would be independent of the operating system. This is especially true as Macs and many Windows machines run on the same hardware.

I'm familiar with the theoretical concept -- and I'm also familiar with the actual results that those sorts of security problems (and other similar security problems) don't happen on the Macintosh computers... :-)

And so..., in practice, and about a decade of the operating system that it is using (Mac OS X) -- it simply has no problems with viruses or a whole multitude of other exploits and/or security problems... it just doesn't happen and hasn't happen in over that long length of time and is not even increasing and/or "happening more" -- it's simply "non-existent"... on Macintosh...

7 posted on 12/30/2009 9:14:18 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 6 | View Replies]

To: Star Traveler

You are free to bury your head in the sand. I will not argue with you. Reality be damned, it seems.

I guess I should say you are free to keep your head buried, as it’s long been there anyway.


8 posted on 12/30/2009 9:15:52 PM PST by flintsilver7 (Honest reporting hasn't caught on in the United States.)
[ Post Reply | Private Reply | To 7 | View Replies]

To: Omedalus; Swordmaker
You were saying ...

Why do you believe your Mac is immune to this?

Because security problems like these and/or the over 100,000 viruses simply don't happen on the Macintosh... :-)

You can ask, also, Swordmaker, which is a good resource for information like this about the vastly and drastically reduced and "non-existence" of these types of problems on the Macintosh computers...

9 posted on 12/30/2009 9:16:57 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 5 | View Replies]

To: flintsilver7

No buried heads... “nothing is happening” with the Macintosh computers and it hasn’t happened in the last decade... with this Mac OS X — no matter how much you wish it was happening... LOL...


10 posted on 12/30/2009 9:18:14 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 8 | View Replies]

To: Star Traveler

Please see Post #8 just above.

If you forget that, please see again Post #8 above.


11 posted on 12/30/2009 9:22:20 PM PST by flintsilver7 (Honest reporting hasn't caught on in the United States.)
[ Post Reply | Private Reply | To 10 | View Replies]

To: flintsilver7

You’ll notice that I was replying to post #8 ... LOL...

Just because you want to ignore the facts of the matter doesn’t mean that it’s not your own head stuck up somewhere... :-)


12 posted on 12/30/2009 9:23:46 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 11 | View Replies]

To: Star Traveler

Please see Post #8 above.


13 posted on 12/30/2009 9:27:48 PM PST by flintsilver7 (Honest reporting hasn't caught on in the United States.)
[ Post Reply | Private Reply | To 12 | View Replies]

To: flintsilver7

When one’s head is up there, you end up being caught in an infinite loop.... so just “pull it out” and you’ll be okay... :-)


14 posted on 12/30/2009 9:31:20 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 13 | View Replies]

To: Star Traveler

Please see Post #8 above.

I believe that I mentioned I will not argue with you. There isn’t more I can say than I’ve already said as to why.


15 posted on 12/30/2009 9:35:53 PM PST by flintsilver7 (Honest reporting hasn't caught on in the United States.)
[ Post Reply | Private Reply | To 14 | View Replies]

To: flintsilver7

No arguing..., just trying to help you get out of that infinite loop, that’s all... life will be better for it... :-)


16 posted on 12/30/2009 9:37:40 PM PST by Star Traveler (At Christmas - remember to keep "Christ" in the One-World Government that we look forward to)
[ Post Reply | Private Reply | To 15 | View Replies]

To: wendy1946

I just drive to the store and buy what I need with cash. Same with banking. My bankers know what I look like....and know my name..


17 posted on 12/30/2009 9:46:31 PM PST by Dallas59 (No To O -Time is going by really really really really slow.)
[ Post Reply | Private Reply | To 1 | View Replies]

To: Omedalus
This family of viruses infects the BIOS. It’s active and infectious regardless of what OS is installed on the machine. Why do you believe your Mac is immune to this?

Possibly due to the means of flashing the bios? The attack program to install the bios virus may be windows specific...

18 posted on 12/30/2009 10:29:59 PM PST by ThunderSleeps (obama out now! I'll keep my money, my guns, and my freedom - you can keep the change.)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Omedalus
This family of viruses infects the BIOS. It’s active and infectious regardless of what OS is installed on the machine. Why do you believe your Mac is immune to this?

No BIOS... for one thing.

19 posted on 12/30/2009 10:36:01 PM PST by Swordmaker (Remember, the proper pronunciation of IE isAAAAIIIIIEEEEEEE!)
[ Post Reply | Private Reply | To 5 | View Replies]

To: flintsilver7
If you forget that, please see again Post #8 above.

Macs are EFI machines. Extensible Firmware Interface is a specification that defines a software interface between an operating system and platform firmware. EFI is a much larger, more complex, OS-like replacement for the older BIOS firmware interface present in all IBM PC-compatible personal computers. The EFI specification was originally developed by Intel, and is now managed by the Unified EFI Forum.

20 posted on 12/30/2009 10:40:28 PM PST by Swordmaker (Remember, the proper pronunciation of IE isAAAAIIIIIEEEEEEE!)
[ Post Reply | Private Reply | To 11 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-4041-50 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson