Skip to comments.
Trickbot trojan found to now have the ability to modify a computer's UEFI
Tech Xplore ^
| 12/04/2020
| Bob Yirka
Posted on 12/04/2020 8:35:07 AM PST by BenLurkin
click here to read article
Navigation: use the links below to view more comments.
first previous 1-20, 21-40, 41-49 last
To: dayglored; BenLurkin
This sounds as insidious as rootkits and harder to deal with. Perhaps the time has come for Windows users to consider “burner computers” like criminals dispose of cheap telephones...if they won’t move to a more secure operating system.
41
posted on
12/05/2020 6:20:35 AM PST
by
MikelTackNailer
(Obama wasn't qualified so Biden was actually President. He can't serve three terms.)
To: BenLurkin; dayglored
"When a computer boots up, the UEFI and firmware work together to bring up the operating system—if nefarious code has been embedded in the firmware, it can load its own software modules or even modify the operating system as it loads." "The entities behind the creation of the trojan are believed to be criminals in Russia and North Korea" https://techxplore.com/news/2020-12-trickbot-trojan-ability-uefi.html
42
posted on
12/05/2020 6:22:29 AM PST
by
daniel1212
(Trust the risen Lord Jesus to save you as a damned and destitute sinner + be baptized + follow Him)
To: Empire_of_Liberty
Remote BIOS and FW update deliver was not a good change. Maybe corporate IT thinks it is but it isn’t.
To: BenLurkin; Abby4116; afraidfortherepublic; aft_lizard; AF_Blue; AppyPappy; arnoldc1; ATOMIC_PUNK; ..
44
posted on
12/05/2020 4:09:00 PM PST
by
dayglored
("Listen. Strange women lying in ponds distributing swords is no basis for a system of government."`)
To: proxy_user
To: BenLurkin
Such modules would then go undetected by conventional antivirus software and would not be overcome, even if the hard drive were wiped clean or replaced altogether.So does it modify the ROM?
46
posted on
12/05/2020 8:13:57 PM PST
by
wastedyears
(The left would kill every single one of us and our families if they knew they could get away with it)
To: proxy_user
Interesting point.
I did a search for more articles on Trickbot and Trickboot and noticed something in common with every one of them: they don’t identify the vulnerable OS by name. Instead they refer to “the OS” exclusively when describing how the malware operates.
We are left to assume that only Microsoft is affected but since this particular malware attacks the motherboard firmware first it is reasonable to conclude that any OS is potentially vulnerable (since the malware has access to modify the OS system files before the OS is booted).
I made this same comment to a couple of the articles and will post if they respond.
47
posted on
12/06/2020 9:05:28 AM PST
by
rockrr
( Everything is different now...)
To: BenLurkin
Hi.
Trust voting by the internet they say.
Trust the DOJ and FBI they say.
Trust the media they say.
My trust rest in God, guts and guns.
5.56mm
48
posted on
12/06/2020 9:32:40 AM PST
by
M Kehoe
(DRAIN THE SWAMP! Finish THE WALL!)
Comment #49 Removed by Moderator
Navigation: use the links below to view more comments.
first previous 1-20, 21-40, 41-49 last
Disclaimer:
Opinions posted on Free Republic are those of the individual
posters and do not necessarily represent the opinion of Free Republic or its
management. All materials posted herein are protected by copyright law and the
exemption for fair use of copyrighted works.
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson