« | Home | »

100% Undetectable Malware on new AMD technology

By Martin English | June 30, 2006

According to an eWeek article,a Singapore-based IT security firm COSEINC has built a working prototype of new rootkit / malware (i guess the terminology depends on whether you use it for good or evil !!) technology that uses AMD’s new pacifica virtualization technology. The artcile is a bit “tabloid” in nature, but it appears the software creates a hypervisor that ends up running the the OS – in other words, the “real” image becomes a virtual machine running inside the rootkit.

The company plans to discuss the idea and demonstrate a working prototype for Windows Vista x64 at the SyScan Conference in Singapore on July 21 and at the Black Hat Briefings in Las Vegas on Aug. 3.

In a delicious irony, the Black Hat presentation will occur on the same day Microsoft is scheduled to show off some of the key security features and functionality being fitted into Vista. However, it should be stressed that it won’t matter what the OS is – Any x86 Operating System that runs on this hardware will be susceptible, becuae it (whether it be Windows Xp, Vista, Linux or whatever) will under the control of the hypervisor.

Topics: Code, Technology, Work | No Comments »

Comments

  • SAP Search

    Custom Search
    Add to Google

  • Recent Posts

  •  

    June 2006
    M T W T F S S
    « May   Jul »
     1234
    567891011
    12131415161718
    19202122232425
    2627282930  

  • Archives