1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

News Kaspersky outs hard drive infecting malware

Discussion in 'Article Discussion' started by Gareth Halfacree, 17 Feb 2015.

  1. Gareth Halfacree

    Gareth Halfacree WIIGII! Lover of bit-tech Administrator Super Moderator Moderator

    Joined:
    4 Dec 2007
    Posts:
    17,379
    Likes Received:
    7,210
  2. towelie

    towelie How do I Internet!!

    Joined:
    1 Sep 2011
    Posts:
    399
    Likes Received:
    10
    scary stuff!
     
  3. Nexxo

    Nexxo * Prefab Sprout – The King of Rock 'n' Roll

    Joined:
    23 Oct 2001
    Posts:
    34,733
    Likes Received:
    2,217
    All your bytes are belong to us.
     
  4. B1GBUD

    B1GBUD ¯\_(ツ)_/¯ Accidentally Funny

    Joined:
    29 May 2008
    Posts:
    3,559
    Likes Received:
    558
    That's it, I'm going back to punch cards.
     
  5. XXAOSICXX

    XXAOSICXX Minimodder

    Joined:
    20 Apr 2011
    Posts:
    761
    Likes Received:
    15
    I'm not feeling too well (man flu) so perhaps I just didn't read the article properly...but where does it say what this malware actually does, apart from simply store itself surreptitiously on a drive? I mean..to what end?

    It's a bit like a mouse taking residence in my house. If it's just chilling out, and watching the world go by...fair enough..but if it starts eating my cheese, or changing the locks, well then I'm gonna have a problem with it. What does this malware actually DO?
     
  6. Atomic

    Atomic Gerwaff

    Joined:
    6 May 2002
    Posts:
    9,646
    Likes Received:
    94
    There's a more indepth article on ars about it.

    snippit:
     
  7. David

    David μoʍ ɼouმ qᴉq λon ƨbԍuq ϝʁλᴉuმ ϝo ʁԍɑq ϝμᴉƨ

    Joined:
    7 Apr 2009
    Posts:
    17,728
    Likes Received:
    6,240
    Was anyone else expecting to see something like this...?

    "you're all running infected hardware, so click on this link to replace your HDD firmware with these totally legitimate versions. Honest."
     
  8. Corky42

    Corky42 Where's walle?

    Joined:
    30 Oct 2012
    Posts:
    9,648
    Likes Received:
    388
    Honestly. yes i was.

    Information has always been a highly prized commodity that governments have fought hard to both attain and keep secret, information is power and the internet had the potential to change that balance of power away from governments with their vast resources and money to us mere mortals.
    No longer do you need to invest vast resources into building machines that enable you to know what is happening on the other side of the world, to eves drop on what your enemy is saying and doing, or to keep your secrets from falling into the wrong hands.

    The Internet had, and maybe still does have the potential to shift that control of information into the hands of everyday people, to give people the power to question what their governments tell them, to give them the information advantage, the power of narratives.

    Governments will stop at nothing (imho) to regain that information advantage, to regain the power of narratives.

    /rant
     
  9. SexyHyde

    SexyHyde Minimodder

    Joined:
    24 Jul 2009
    Posts:
    609
    Likes Received:
    11
    Maybe them Kingston drives everyones been avoiding because of the bait and switch arent so bad after all.

    As said though this seems to be extremely rare. I just wonder if there is a more common version.
     
  10. Locknload

    Locknload Jolly Good Egg

    Joined:
    28 Jun 2009
    Posts:
    241
    Likes Received:
    24
    Now your talking, that's more like it.
    This needs to happen more with all of us......ask questions, defy convention, don't be fobbed off.

    The biggest worry for me, is that the people who we (the general public) may believe to be in a position to offer some kind of help to change this Government/Corporation mutual fornication, appear to be quite content to hide in the shadows and keep their mouths shut.

    I am not surprised they are afraid, after all who in their right minds would take on the corporate mafia and its minions?

    Telecommunication Giants, Media & Entertainment moguls, Global Bankers, Trade and Industry affiliates, Pharmaceutical Industries, Insurance Companies, GCHQ, NSA and Government are all just playing with our lives to suit there own twisted agendas, regardless of any risk, or conscience, it appears even killing us is not frowned upon.

    We are so f*****!

    Have a nice day.

    :D:worried:
     
  11. Gareth Halfacree

    Gareth Halfacree WIIGII! Lover of bit-tech Administrator Super Moderator Moderator

    Joined:
    4 Dec 2007
    Posts:
    17,379
    Likes Received:
    7,210
    To steal (or, more worryingly, plant) information. There's a multi-page report on all aspects of the discovered malware (PDF warning) linked within the article.
     
  12. Ayrto

    Ayrto What's a Dremel?

    Joined:
    20 Jun 2007
    Posts:
    255
    Likes Received:
    3
    How difficult would it be for ssd and Hdd manufacturers to include a jumper that prevents unauthorised FW overwrites? It's very rare that the FW even needs updating.

    As for USB sticks, again, how many times does the FW need updating? Why not simply sell sticks that can't be reprogrammed by stealth?
     
  13. SexyHyde

    SexyHyde Minimodder

    Joined:
    24 Jul 2009
    Posts:
    609
    Likes Received:
    11
    Exploit - a software tool designed to take advantage of a flaw in a computer system, typically for malicious purposes such as installing malware.
     
  14. Ayrto

    Ayrto What's a Dremel?

    Joined:
    20 Jun 2007
    Posts:
    255
    Likes Received:
    3
    From Ars technica's more detailed write-up.

    That could be made impossible with a physical jumper that a user has to change the position of to enable FW flash write access. It'd make flashing a drive slightly more inconvenient.

    As for encrypted files sitting hidden in the registry with other encrypted data. That's for MS.
     
    Last edited: 19 Feb 2015

Share This Page