All the latest UK technology news, reviews and analysis
|
|
|
01 May 2008
Criminal hackers are creating malicious hardware which experts warn will be much more difficult to detect than conventional software-based malware.
A team led by Samuel King, assistant professor at the University of Illinois, Urbana-Champaign, has demonstrated how to gain control of a computer by adding malicious circuits to its processor.
Such circuits are effectively invisible to antivirus and other security software because they interfere with the computer at a deeper level than a software-based virus or even a rootkit.
King's team explained to New Scientist that they used a processor called a field programmable gate array (FPGA), in which logic circuits can be rearranged to create a replica of an existing open source processor called Leon3.
The original processor contains around 1.7 million circuits, but the boffins added about 1,000 malicious circuits not present in Leon3.
The new circuits allowed them to bypass security controls on Leon3 in a similar way to which a virus hands control of a computer to a hacker, but without requiring a flaw in a software application.
When the scientists connected the FPGA to another computer, they were able to steal passwords and install malicious software that allowed the operating system to be controlled remotely.
"Once you have this mechanism in place, you can do whatever you want," King told New Scientist.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Java Developer - Belfast - Banking Skills: Core Java...
I am recruiting for a Shared Accounting Service Manager...
QA Tester/Automation Tester - C# .NET Agile, Epsom, Surrey...
3RD LINE EXCHANGE 2010 / 2003, QUEST, LONDON, GLOBAL...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
What's the point of this article ?
And ? So what ? Just creating news for the sake of it or having to justify your existence. Once in a while your worthwhile reporting is sullied by useless news. Don't you realise we already know about hardware bypassing ? Hardware is old hack. Imagine anyone even considering this. A) test software will detect hardware. B) once detected the modification is useless. C) only an idiot would even think about wasting money on this ploy
Posted by: Don 22 May 2008