BadBIOS

From HandWiki
Revision as of 17:04, 6 February 2024 by JMinHep (talk | contribs) (change)
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Short description: BIOS-based computer malware

BadBIOS is alleged malware described by network security researcher Dragos Ruiu in October 2013[1][2] with the ability to communicate between instances of itself across air gaps using ultrasonic communication between a computer's speakers and microphone.[3][2] To date, there have been no proven occurrences of this malware.

Ruiu says that the malware is able to infect the BIOS of computers running Windows, Mac OS X, BSD and Linux as well as spread infection over USB flash drives.[2] Rob Graham of Errata Security produced a detailed analysis[4] of each element of the descriptions of BadBIOS's capabilities, describing the software as "plausible", whereas Paul Ducklin on the Sophos Naked Security blog[5] suggested "It's possible, of course, that this is an elaborate hoax".[1] After Ruiu posted data dumps which supposedly demonstrated the existence of the virus, "all signs of maliciousness were found to be normal and expected data".[6]

In December 2013 computer scientists Michael Hanspach and Michael Goetz released a paper to the Journal of Communication demonstrating the possibility of an acoustic mesh networking at a slow 20 bits per second using a set of speakers and microphones for sonic communication in a fashion similar to BadBIOS's described abilities.[7]

See also

References

  1. 1.0 1.1 Leyden, John (1 Nov 2013). "Indestructible, badass rootkit BadBIOS: Is this tech world's Loch Ness Monster? VOTE NOW". https://www.theregister.co.uk/2013/11/01/breaking_badbios. Retrieved 30 December 2014. 
  2. 2.0 2.1 2.2 Goodin, Dan (31 Oct 2013). "Meet "badBIOS," the mysterious Mac and PC malware that jumps airgaps". https://arstechnica.com/security/2013/10/meet-badbios-the-mysterious-mac-and-pc-malware-that-jumps-airgaps/. Retrieved 31 December 2014. 
  3. Grimes, Roger A. (Nov 12, 2013). "4 reasons BadBIOS isn't real". http://www.infoworld.com/article/2609622/security/4-reasons-badbios-isn-t-real.html. Retrieved 30 December 2014. 
  4. Graham, Robert. "#badBIOS features explained". http://blog.erratasec.com/2013/10/badbios-features-explained.html. Retrieved 30 December 2014. 
  5. Ducklin, Paul (November 2013). "The "BadBIOS" virus that jumps airgaps and takes over your firmware - what's the story?". https://nakedsecurity.sophos.com/2013/11/01/the-badbios-virus-that-jumps-airgaps-and-takes-over-your-firmware-whats-the-story/. Retrieved 30 December 2014. 
  6. Grimes, Roger A. (3 March 2015). "New NSA hack raises the specter of BadBIOS". http://www.infoworld.com/article/2891692/security/does-the-final-nsa-hack-prove-badbios-was-real.html. Retrieved 7 September 2015. 
  7. Leyden, John (5 Dec 2013). "Hear that? It's the sound of BadBIOS wannabe chatting over air gaps". https://www.theregister.co.uk/2013/12/05/airgap_chatting_malware/. Retrieved 30 December 2014.