use the following search parameters to narrow your results:
e.g. subreddit:pics site:imgur.com dog
subreddit:pics site:imgur.com dog
advanced search: by author, sub...
~3 users here now
Discovery of new UEFI rootkit exposes an ugly truth: The attacks are invisible to us
submitted 1 year ago by [deleted] from arstechnica.com
view the rest of the comments →
[–]Drewski 3 insightful - 3 fun3 insightful - 2 fun4 insightful - 2 fun4 insightful - 3 fun - 1 year ago (2 children)
This is nuts, how do you even defend against this type of attack?
[–]iamonlyoneman 3 insightful - 3 fun3 insightful - 2 fun4 insightful - 2 fun4 insightful - 3 fun - 1 year ago (0 children)
Use hardware that's airgapped and never online?
[–]HiddenFox 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 0 fun3 insightful - 1 fun - 1 year ago (0 children)
Would a BOIS flash with a new HDD at the same time work?
I would also think a hash for the UEFI code and some way to compare it so you can check for mods in the code.
After reading more of the article it seem to be very limited in use and requires a lot of investment to get it working. I doubt it is a mainstream attack or ever will be. Also the researchers believe (in one case anyway) that the motherboard itself was modified before even shipping to the customer. IMO this looks like something government would do to target specific people of interest. But hey, who knows, anything is possible.
view the rest of the comments →
[–]Drewski 3 insightful - 3 fun3 insightful - 2 fun4 insightful - 2 fun4 insightful - 3 fun - (2 children)
[–]iamonlyoneman 3 insightful - 3 fun3 insightful - 2 fun4 insightful - 2 fun4 insightful - 3 fun - (0 children)
[–]HiddenFox 2 insightful - 1 fun2 insightful - 0 fun3 insightful - 0 fun3 insightful - 1 fun - (0 children)