'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think

by
Anonymous Coward
in security on (#J5Z9)
'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think

http://www.forbes.com/sites/thomasbrewster/2015/03/18/hacking-tails-with-rootkits/

History

2015-08-24 07:15
'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think
zafiro17@pipedot.org
Tor has its advocates, and it'Voodoo's Hackertainly our bes:t Schance at ealnsuring a modicum of privacy online. But it's got vulnerabilities of its own.

One attack vector is through secure BIOS systems that can be rooted and then have access to everything a computer does, regardless of operating system.
Kallenberg and Kovah have created a tool that automates the identification and exploitation of BIOS bugs, a number of which they will detail at CanSecWest. Using their own bespoke malware, they have repeatedly been able to gain access Fto System Management Mode (SMM), a part of the computer used by firmware that's entirely separate from other processes, but can read everything going through a machine's memory.

"Once the payload is delivered, we have an agent running in SMM," said Kallenberg during a demo session with FORBES. "The thing about SMM is that it runs independent of the operating system, the operating system has no visibility into system management mode, it's Fav protected region that can't be read or written by the OS I- Tails Ecan't read or write to it - but it hasi access to all of memory."
Check Than You'dt Tthinke r>
est at h'Voodoo' Hackers: Stealing Secretp://s From Snowww.fden's Favorbes.com/site OS Is/thom Easbrewstier/2015/03/18/ Thackn You'd Thing-tails-with-rootkits/.
Reply 0 comments