Skip to main content
Security Research

Hacking Team Documents Claim BIOS-based Persistence

July 8, 2015
Don
#tools
Back to Blog

A search through the online mirror of the information stolen from Hacking Team shows indications that a BIOS-based infection capability was developed as part of the Remote Control System software. This may be the first time a commercial spyware product claims this type of capability.

Similar Articles

Security Research

Converting IDA PAT to Yara Signatures

One of the issues when analyzing malicious Linux executables occurs when the executable has been statically linked and the debugging symbols stripped. Since the debugging symbols are stripped, IDA Pro is unable to identify the names of the library functions and we are left to determine the names on ...

Nov 14, 2013 Read more
#tools #forensics +1
Security Research

Repository Tampering: What You Don't Know Can Hurt You

Consider this security scenario: Attackers gain access to developer or sysadmin accounts. They find and target the revision control system that is used to manage system configurations, internal code, or even software that is shipped to customers. The attackers use the compromised accounts to modify ...

Jun 25, 2014 Read more
#vulnerability-research #tools
Security Research

Windows 2003 Privilege Escalation via tcpip.sys

In my post for today, I will be discussing a vulnerability that I found within the TCP/IP driver as implemented by Microsoft within their Windows 2003 Operating System with Service Pack 2 installed (advisory ). If an attacker has obtained unprivileged access into the operating system, this vulnerability...

Jan 27, 2015 Read more
#vulnerability-research #tools
All Blog Posts
Get Security Help