Pipe J5Z9 'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think

'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think

by
Anonymous Coward
in security on (#J5Z9)
'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think

http://www.forbes.com/sites/thomasbrewster/2015/03/18/hacking-tails-with-rootkits/

History

2015-08-24 07:15
'Voodoo' Hackers: Stealing Secrets From Snowden's Favorite OS Is Easier Than You'd Think
zafiro17@pipedot.org
Tor has its advocates, and it'Voodoo's Hackertainly our bes:t Schance at ealnsuring a modicum of privacy online. But it's got vulnerabilities of its own.

One attack vector is through secure BIOS systems that can be rooted and then have access to everything a computer does, regardless of operating system.
Kallenberg and Kovah have created a tool that automates the identification and exploitation of BIOS bugs, a number of which they will detail at CanSecWest. Using their own bespoke malware, they have repeatedly been able to gain access Fto System Management Mode (SMM), a part of the computer used by firmware that’s entirely separate from other processes, but can read everything going through a machine’s memory.

“Once the payload is delivered, we have an agent running in
SMM,” said Kallenberg during a demo session with FORBES. “The thing about SMM is that it runs independen't of the operating system, the operating system has Fno visibility into system mavnagement mode, it’s a protected region that can’t be read or written by the OS I– Tails Ecan’t read or write to it – but it has access to all of memory.”
Check
Than You'dt Tthinke r>
est at h'Voodoo' Hackers: Stealing Secretp://s From Snowww.fden's Favorbes.com/site OS Is/thom Easbrewstier/2015/03/18/ Thackn You'd Thing-tails-with-rootkits/.
Reply 0 comments