Meet “badBIOS,” the mysterious Mac and PC malware that jumps airgaps

It looks like the scientific community has the same opinion about Aliens as they do about BadBios.

Its technically feasible but has not been proven to exist while Ruiu continues to claim he has seen it .

I continue to agree with Triulzi and other security researchers when they say it's perfectly feasible for a determined attacker to develop malware as advanced as badBIOS and unleash it wittingly or otherwise on Ruiu's machines. At the same time, extraordinary claims require extraordinary proof. If badBIOS is real, there should be no reason researchers can't independently verify its existence, especially if, as Ruiu says, it has infected more than a dozen computers and USB drives over a three-year span.

arstechnica.com...

reply to post by ShadeWolf

Meet “badBIOS,” the mysterious Mac and PC malware that jumps airgaps

But I don't want to meet him, OP... In fact I'd like to not meet him, for my computer's sake...

S&F for the information, mate!

reply to post by ShadeWolf


Maybe they have created a program that can detect changes in voltage,capacidance,resistance of the IC(CMOS) and use that to detect leaked rf from surrounding machines?

Maybe the firmware's (embedded flash rom) magnetic read/writing rate changes depending on the rf signals from surounding computers being induced on it?

That is one masterful hack.

Perhaps the virus uses other means to spread like leeching on a cell phone to then be transported to another host (computer) using wireless devices to travel and spread. Our cellphones send and receive data constantly and we have no idea what is being sent or received. Almost everyone has a wireless router just waiting for a device log on and receive an IP address, this is another means of "travel" for the virus. A cellphone can broadcast pretty far so can a router. Air gaps are not really that big. It is a stretch I know, but plausible.

It sounds like magic maybe because I don't understand it or it just is make believe. Interesting nonetheless.

John_Rodger_Cornman
reply to post by ShadeWolf

 

Maybe they have created a program that can detect changes in voltage,capacidance,resistance of the IC(CMOS) and use that to detect leaked rf from surrounding machines?

Not really - even if you could detect RF that way there's no hardware to present that data to the software.

Maybe the firmware's (embedded flash rom) magnetic read/writing rate changes depending on the rf signals from surounding computers being induced on it?

That is one masterful hack.

FLASH isn't magnetic. It's also automated inside the chip, you don't see changes in read/write times. However, it is also so slow (comparatively) you would never ever be able to detect RF that way.