Computrace backdoor exposes millions of PCs

by
Anonymous Coward
in security on (#9RJV)
Security researchers have discovered millions of PCs have Computrace software enabled. This software is enabled in the BIOS by default. It allows for a Windows PC to be taken over remotely. Computrace does not enforce encryption when it communicates and it does not verify the identity of the remote server from which it receives commands. Most users are not even aware that this software is installed and enabled in their BIOS.

Nearly every PC has an anti-theft product called Computrace embedded in its BIOS PCI Optional ROM or its unified extensible firmware interface (UEFI). Computrace (aka. Lojack for Laptops) is a legitimate, trusted application developed by Absolute Software. However, it often runs without user-consent, persistently activates itself at system boot, and can be exploited to perform various attacks and to take complete control of an affected machine.

Re: New heights in hyperbole (Score: 1)

by evilviper@pipedot.org on 2015-05-28 03:48 (#9X6X)

FWIW, I think we could do without the regex entirely. A clever idea, but only extremely rarely does it come in handy. Even linking to stories and comments, people usually want link/alt text. And the false positives are significant. Probably lots of people wasting time wondering why would someone irretrievably link a serial number: Serial #87654321
etc.
Post Comment
Subject
Comment
Captcha
Of the numbers 25, 45, 14 or twenty eight, which is the highest?