WelcomeUser Guide
ToSPrivacyCanary
DonateBugsLicense

©2024 Poal.co

934

UEFI was supposed to add security. Rather, it has made this shit damn near "common". You can't even physically replace the chips the malware lives in without a full rework station and some skills (as well as a non-infected chip).

Archive: https://archive.today/1P3HP

From the post:

>Over the past decade, a new class of infections has threatened Windows users. By infecting the firmware that runs immediately before the operating system loads, these UEFI bootkits continue to run even when the hard drive is replaced or reformatted. Now the same type of chip-dwelling malware has been found in the wild for backdooring Linux machines. Researchers at security firm ESET said Wednesday that Bootkitty -- the name unknown threat actors gave to their Linux bootkit -- was uploaded to VirusTotal earlier this month. Compared to its Windows cousins, Bootkitty is still relatively rudimentary, containing imperfections in key under-the-hood functionality and lacking the means to infect all Linux distributions other than Ubuntu. That has led the company researchers to suspect the new bootkit is likely a proof-of-concept release. To date, ESET has found no evidence of actual infections in the wild.

UEFI was supposed to add security. Rather, it has made this shit damn near "common". You can't even physically replace the chips the malware lives in without a full rework station and some skills (as well as a non-infected chip). Archive: https://archive.today/1P3HP From the post: >>Over the past decade, a new class of infections has threatened Windows users. By infecting the firmware that runs immediately before the operating system loads, these UEFI bootkits continue to run even when the hard drive is replaced or reformatted. Now the same type of chip-dwelling malware has been found in the wild for backdooring Linux machines. Researchers at security firm ESET said Wednesday that Bootkitty -- the name unknown threat actors gave to their Linux bootkit -- was uploaded to VirusTotal earlier this month. Compared to its Windows cousins, Bootkitty is still relatively rudimentary, containing imperfections in key under-the-hood functionality and lacking the means to infect all Linux distributions other than Ubuntu. That has led the company researchers to suspect the new bootkit is likely a proof-of-concept release. To date, ESET has found no evidence of actual infections in the wild.
[–] 1 pt (edited )

Bios chips used to be pretty to replace when mobo manufacturers put it in a socket.

Are the majority of UEFI bios(s) not in a socket? I don't see a socket for it in my new board's layout. I didn't think to look for it when I was choosing, sockets bios chips used to be pretty standard.