Text only | Text with Images

The MASM Forum

Miscellaneous => The Orphanage => Topic started by: Magnum on March 27, 2015, 02:09:43 PM

Title: Malware that survives formating
Post by: Magnum on March 27, 2015, 02:09:43 PM
I keep reading about malware that survives formating of a hard drive.

Does it write to bios ?

I use Linux and have not seen this.

Title: Re: Malware that survives formating
Post by: dedndave on March 27, 2015, 02:35:55 PM
google for "root-kit"
formatting may not get rid of it
but i think deleting a partition and starting from scratch should do the job
Title: Re: Malware that survives formating
Post by: fearless on March 27, 2015, 02:49:26 PM
https://threatpost.com/new-bios-implant-vulnerability-discovery-tool-to-debut-at-cansecwest/111710

and

https://threatpost.com/inside-nls_933w-dll-the-equation-apt-persistence-module/111128

interesting reads - related to the topic it would seem.
Title: Re: Malware that survives formating
Post by: xanatose on March 27, 2015, 04:30:26 PM
Not to mention NSA spyware included in some manufacturers hard disk chips.

http://www.technobuffalo.com/2015/02/17/nsa-spyware-hiding-hard-drives-made-by-wd-seagate-and-others-report-says/

The only way to get rid of that is not to use their disk. But then you risk the same malware but from the Chinese.
Title: Re: Malware that survives formating
Post by: hutch-- on March 30, 2015, 01:09:09 PM
Don't be afraid to run a flash upgrade on your BIOS either, many of the better motherboards have a jumper option to reset the BIOS from scratch and then you can add any upgrades you need.
Text only | Text with Images