All the latest UK technology news, reviews and analysis
|
|
|
21 Jul 2010
Dell has confirmed that some of its PowerEdge R410 servers have been shipping with malware preinstalled on the motherboard.
The malware is in a section of the server motherboard's firmware, according to reports, and is an unidentified spying application.
Dell said that the problem does not harm servers running non-Windows operating systems, and is not an issue with new systems shipped directly from the manufacturer.
"We have identified a potential issue with our service motherboard stock, and are taking preventative action with our customers accordingly," said the company in a community forum post.
"The potential issue involves a small number of PowerEdge server motherboards sent out through service dispatches that may contain malware. This malware code has been detected on the embedded server management firmware."
Dell said that it will contact the small number of customers with infected motherboards and send round engineers to rectify the problem.
Malware embedded in this way would be undetectable to traditional security software. and could pose a major threat.
A Dell spokesman was unavailable at the time of going to press.
Latest stories from Servers
Related articles
Related jobs
Poll
Are you confident that the UK's IT infrastructure is secure from attack in the wake of the Flame malware revelations?
V3 examines the key strengths and weaknesses of Samsung's latest iPhone killer
Connect with V3.co.uk
Social networking is almost ubiquitous. This white paper examines the benefits and risks and it looks at the different ways companies can reconcile them
The importance of understanding your infrastructure
IT Support Analyst - Active Directory, Windows 7, MS...
Helpdesk / Desktop Support Analyst (Windows 7, MAC, Windows...
Infrastructure / Server Support Analyst - 3rd Line, Windows...
Credit Risk Modeller, SAS, London, £50,000 Title- Credit...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Embedded Malware origins
Anybody care to wager the Malware impregnated items were manufacrured and infected in the PRC? Send more jobs over there so they can send us inferior/defective and contaminated products!!!
Posted by: Ray P. 29 Jul 2010
Growing problem with malware infection at the point of assembly
Although instances of malware infecting Flash memory at the point of manufacture or malware being burned to ROM along with firmware are extremely rare, it does happen, and the instances are increasing. Just three months ago we saw an instance of malware finding its way onto a USB-powered battery charger being sold under the brand of leading battery manufacturer Energizer. The device, made for them by a third party, contained malware infected PC drivers stored on its internal Flash memory. Over the years, we have seen similar things happening with malware finding its way onto magazine cover discs, pre-loaded USB sticks and new PC system software pre-installs. This, along with the Dell incident illustrates the need for stringent malware protection and scanning at the point of manufacture. Failure to maintain adequate anti-malware measures when you are manufacturing PC products, storage devices, software media or any other device capable of storing and executing software can result in a malware pandemic, simply because of volume distribution and speed of output.
Posted by: Christopher Boyd, senior threat researcher, Sunbelt Software 23 Jul 2010