Risky Business #67 -- Firmware pwnage

Patrick Gray's picture

Start the discussion

0 Comments

June 23, 2008 --

On this week's Risky Business we're taking a look at firmware root kits with John Heasman from the US arm of NGS Software. Some time ago, John figured out how to plonk a root kit on to a PCI device [pdf]. As you can imagine, those sorts of root kits can be very difficult to detect and remove.

But it gets worse.

Newer research, due to be presented at BlackHat in Las Vegas, will show how the CPU on some PCI devices (like the chip on network devices designed to do TCP checksum calculations) can actually be used to run the root kits. That means they never gets loaded into main memory. Try detecting that!

Also on this week's show, Munir Kotadia from ZDNet Australia joins us to discuss the week's news.

icon for podpress

| Play in Popup | Download

User login

Recent podcasts

INTERVIEW: Robert Clarke on legal aspects of cyber espionage

Get your hack on!
SPONSOR PODCAST: DDoS attacks against mobile networks

A chat with Arbor Networks founder Rob Malan...
PRESENTATION: Contactless payments with Peter Gutmann

The RFID devil's in the detail...
INTERVIEW: Connecting the physical with the virtual

The programmable network with Christopher Hoff...
SPONSOR PODCAST: Commercial sector versus intelligence world

Who is doing a better job?

Sponsored by:

Windows Security Tools for IP Professionals

Check Point

Sophos

Hosted by:

Vigabyte

Recent comments

Thanks for that Dave! As for
1 day 16 hours ago
Congratulations on the Award and Thanks for all the Bleeps
1 day 22 hours ago
Yeah fully -- we'll give it a
2 days 22 hours ago
Was the vmware code ever released on May 5?
3 days 14 hours ago
BYOD tradeoffs misunderstood?
4 days 3 hours ago
awesome
4 days 15 hours ago
Congrats
1 week 3 days ago
Hey there Daniel, thanks for
1 week 6 days ago
Congratulations!
2 weeks 8 hours ago
Hey there... yeah it was
2 weeks 2 days ago