It looks like you're using an Ad Blocker.
Please white-list or disable AboveTopSecret.com in your ad-blocking tool.
Thank you.
Some features of ATS will be disabled while you continue to use an ad-blocker.
Researchers Alfredo Ortega and Anibal Sacco, from Core Security Technologies, have discovered a vulnerability in the 'Computrace LoJack for Laptops' software. This is a BIOS-level application that calls home for instructions in case the laptop is ever lost or stolen. However, what the application considers 'home' is subject to change. This allows the creation of malware capable of 'infecting the BIOS with persistent code that survive reboots and reflashing attempts.' Computers from Dell, Lenovo, HP, Toshiba, Asus, and others may be affected.
Originally posted by PsykoOps
The whole danger was that it's a vournebility that survices reflashing. That's really really bad.
Originally posted by PsykoOps
Anyone know where a list of laptops affected could be found?
This allows the creation of malware capable of 'infecting the BIOS with persistent code that survive reboots and reflashing attempts.'
Originally posted by PsykoOps
They demonstrated this in a security convention. This is exactly the reason why this is such a threat.