How Protected Is The BIOS ??

Help and Discussion

Moderator: The Mod Squad

How Protected Is The BIOS ??

Postby c327 » Sun Jul 01, 2012 11:58 pm

Although I have no problems or issues with this PC's BIOS I ask this question for my own personal knowledge.

1) Are there any types of computer viruses or key loggers that can infect or reside in a computers BIOS and if so can it be removed by using a HDD erasing utility or by some other means followed by a complete reinstall of the O.S.

I know the BIOS chip is on the MOBO and I mentioned a HDD, two different things.
“Respect cannot be learned, purchased or acquired - it can only be earned” "Pay It Forward"
c327
Black Belt 4th Degree
Black Belt 4th Degree
 
Posts: 4039
Joined: Fri Feb 27, 2004 1:01 am
Location: Saint Augustine Florida

Postby evasive » Mon Jul 02, 2012 12:33 am

There is a new one out there, 13 years after the last Win.CIH aka Tsjernobyl virus:
http://blog.webroot.com/2011/09/13/mebr ... -the-wild/

Flashing the bios with a known clean copy (maybe in recovery mode) will be needed. Only after that you can clean up your harddisk, otherwise the infection will reinstall after each reboot...
We hate rut, but we fear change.
********************************
System error, strike any user to continue...
evasive
Mobo-fu Master
Mobo-fu Master
 
Posts: 36830
Joined: Sun May 06, 2001 12:01 am
Location: Netherlands

Postby c327 » Mon Jul 02, 2012 1:56 pm

evasive wrote:There is a new one out there, 13 years after the last Win.CIH aka Tsjernobyl virus:
http://blog.webroot.com/2011/09/13/mebr ... -the-wild/

Flashing the bios with a known clean copy (maybe in recovery mode) will be needed. Only after that you can clean up your harddisk, otherwise the infection will reinstall after each reboot...


This PC is fine, no issues. Just wanted to know if the BIOS can get infected by a nasty?
“Respect cannot be learned, purchased or acquired - it can only be earned” "Pay It Forward"
c327
Black Belt 4th Degree
Black Belt 4th Degree
 
Posts: 4039
Joined: Fri Feb 27, 2004 1:01 am
Location: Saint Augustine Florida

Postby evasive » Mon Jul 02, 2012 11:22 pm

If you keep your OS, anti-virus, java, flash, silverlight, browsers, programs in general up to date and use your brain when surfing or opening email this is low-risk. No big gaping holes have been found that can silently infect your bios. This kind of attack is usually directed at a few specific high-profile machines/individuals because it takes a lot of effort for a small number of machines...
We hate rut, but we fear change.
********************************
System error, strike any user to continue...
evasive
Mobo-fu Master
Mobo-fu Master
 
Posts: 36830
Joined: Sun May 06, 2001 12:01 am
Location: Netherlands

Postby c327 » Mon Jul 02, 2012 11:37 pm

evasive wrote:If you keep your OS, anti-virus, java, flash, silverlight, browsers, programs in general up to date and use your brain when surfing or opening email this is low-risk. No big gaping holes have been found that can silently infect your bios. This kind of attack is usually directed at a few specific high-profile machines/individuals because it takes a lot of effort for a small number of machines...


OK, so it is possible even though it is not likly....Thanks
“Respect cannot be learned, purchased or acquired - it can only be earned” "Pay It Forward"
c327
Black Belt 4th Degree
Black Belt 4th Degree
 
Posts: 4039
Joined: Fri Feb 27, 2004 1:01 am
Location: Saint Augustine Florida

Postby Karlsweldt » Wed Jul 04, 2012 4:47 am

The BIOS should default to a 'lock-down' mode unless you are working its pages. Setting a simple password works wonders as to giving security, also.. and you will be warned if any attempt is made to access the BIOS when the OS is active. Almost all BIOS types today have an anti-virus feature that can be activated.
F@H.. to solve mankind's maladies.. in our lifetimes!
Karlsweldt
Mobo-fu Master
Mobo-fu Master
 
Posts: 19305
Joined: Wed Nov 12, 2003 11:57 am
Location: 07438


Return to Virus/Spyware/Security

Who is online

Users browsing this forum: No registered users and 0 guests