* Home Help Search Login Register  

Welcome, Guest. Please login or register.
November 18, 2008, 05:45:52 PM

Login with username, password and session length

212218 Posts
24528 Topics
57708 Members
Latest Member: zebadee

more news...
Search:     Advanced search | Tag Cloud
+  Welcome to the Comodo Forum
|-+  Desktop Security Products
| |-+  Comodo Internet Security - CIS
| | |-+  Virus/Malware Removal Assistance
| | | |-+  documented a bios virus		 « previous next »
Pages: [1] Go Down Print
Author Topic: documented a bios virus  (Read 1281 times)
kesuki
Comodo Family Member
***
Offline Offline

Posts: 54
« on: February 16, 2008, 04:00:24 PM »
i posted it in a thread about removal of a mystery virus (actually a rootkit) because it was found on those root'd systems, however i thought i'd make a new post to bring attention to it.

personally, i believe the bios virus i found was developed by the major crime syndicates, for aid in re-compromising windows computers despite anti-virus and anti-root-kit software. For the major crime syndicates, paying hackers and insiders to get them working source code, and a working bios rooting code, would be just a matter of dollars vs profitability of said code.  if my hunch is right, then they obviously felt the profitability was higher than the cost of developing 'real working rootkit bioses'

https://forums.comodo.com/virusmalware_removal_assistance/mystery_virus-t16550.0.html;msg135739#msg135739
Logged
3xist
Guest
« Reply #1 on: May 31, 2008, 02:21:42 AM »
Quote from: kesuki on February 16, 2008, 04:00:24 PM
i posted it in a thread about removal of a mystery virus (actually a rootkit) because it was found on those root'd systems, however i thought i'd make a new post to bring attention to it.

personally, i believe the bios virus i found was developed by the major crime syndicates, for aid in re-compromising windows computers despite anti-virus and anti-root-kit software. For the major crime syndicates, paying hackers and insiders to get them working source code, and a working bios rooting code, would be just a matter of dollars vs profitability of said code.  if my hunch is right, then they obviously felt the profitability was higher than the cost of developing 'real working rootkit bioses'

https://forums.comodo.com/virusmalware_removal_assistance/mystery_virus-t16550.0.html;msg135739#msg135739

Try an
Kaspersky Online Scan.

Josh
Logged
grue155
Global Moderator
Comodo's Hero
*****
Offline Offline

Posts: 1016
« Reply #2 on: May 31, 2008, 01:07:33 PM »
Having worked that "mystery virus" topic before being carted away on medical leave, I can confirm that was not the average run-of-the-mill malware. From what I've seen here and elsewhere in other malware forums, the criminal effort is definitely seeing malware as a very cost effective method, and they're getting good at it. And not just the classic PC malware, but the atypical and unexpected, as pointed out with the BIOS. There are also MBR attacks, as described http://www.f-secure.com/weblog/archives/00001393.html and NAT/router attacks as described http://isc.sans.org/diary.html?storyid=4175

My thanks to kesuki for finding that malware, and for the reminder.

Since there doesn't seem to be a current malware problem to be worked in this forum, I'm going to close this topic.
Logged
Tags:
Pages: [1] Go Up Print 
« previous next »
Jump to:  

SSL Firewall
Page created in -0 seconds with 20 queries.
Powered by SMF 1.1.7 | SMF © 2006, Simple Machines LLC
Seo4Smf v0.2 © Webmaster's Talks 		Design by 7dana.com