New proof-of-concept tool detects stealthy malware hiding in graphics cards
Ian Paul | Sept. 30, 2013
Which is scarier: The fact that malware can get cozy in your hardware, or the fact that it was completely undetectable until now?
As anti-virus solutions become more robust and Microsoft becomes better at plugging Windows vulnerabilities, malware designers have to get more creative about attacking PCs and servers. One wide-open avenue of attack: hardware components like graphics and network cards. Yes, you read that right.
Security software isn't necessarily looking for malware lurking within peripherals, opening the door for Bad Guys to stash nasty code in your killer, pixel-pumping Radeon or GeForce graphics card. But fear not! Berlin-based researcher Patrick Stewin says he has figured out a way to detect this tricky malware without taxing the CPU, according to SC Magazine Australia.
Peripheral-based malware is particularly difficult to detect, because it doesn't have to rely on a weakness in your computer's operating system, according to Stewin. Instead, it takes advantage of the processing power already present in peripherals like graphics cards that may not be expecting an attack.
Graphics cards, sound cards, and other PC components can process data using direct memory access (DMA). Instead waiting to receive data processing via a PC's CPU, a graphics card can bypass the CPU to access and process graphical data directly from memory.
DMA helps make a PC work faster and reduces the load on the CPU. But it also means that a properly designed bit of malware can get in through a data-crunching peripheral. Once infected, DMA attacks can do all sorts of damage, such as copying encryption keys or installing other types of malware for identity theft, though the odds of being infected by this advanced type of malware are admittedly slim.
Comparing notes
Stewin's solutiondubbed BARMdeals with DMA attacks by keeping tabs on what a system is supposed to be doing and comparing that to what the PC actually is doing.
See original here:
New proof-of-concept tool detects stealthy malware hiding in graphics cards
- TBAGR Virus Killer Instinct TE2 Unboxing and Review - Video - March 9th, 2014 [March 9th, 2014]
- Pork prices up, but - March 9th, 2014 [March 9th, 2014]
- Company closing in on vaccine for killer virus in pigs - March 6th, 2014 [March 6th, 2014]
- Is an HIV vaccine on the horizon? - March 5th, 2014 [March 5th, 2014]
- Siberian Permafrost Reveals Ancient Giant Virus, Remains Infectious - March 4th, 2014 [March 4th, 2014]
- Scientists, mystery woman unlock path to new HIV vaccine - March 4th, 2014 [March 4th, 2014]
- South Africa: Scientists, Mystery Woman Unlock Path to New HIV Vaccine - March 4th, 2014 [March 4th, 2014]
- Study links killer virus to camels - February 27th, 2014 [February 27th, 2014]
- Ultra Virus Killer: Autorun Manager 2014 - Video - February 25th, 2014 [February 25th, 2014]
- Ultra Virus Killer: 6 Scanners In One 2014 - Video - February 25th, 2014 [February 25th, 2014]
- Ultra Virus Killer: ITGeek Tools and Misc.Tools 2014 - Video - February 25th, 2014 [February 25th, 2014]
- Ultra Virus Killer: Portable 2014 - Video - February 25th, 2014 [February 25th, 2014]
- Ultra Virus Killer: Complete Walk Through 2014 - Video - February 25th, 2014 [February 25th, 2014]
- Saudi camel virus found in humans, killer bug detected in secretions and blood - February 25th, 2014 [February 25th, 2014]
- Hot right now: Virus Syndicate - February 25th, 2014 [February 25th, 2014]
- Ultra Virus Killer: Process Manager 2014 - Video - February 23rd, 2014 [February 23rd, 2014]
- Ultra Virus Killer: System Booster 2014 - Video - February 23rd, 2014 [February 23rd, 2014]
- Ultra Virus Killer: Smart Uninstall 2014 - Video - February 23rd, 2014 [February 23rd, 2014]
- Ultra Virus Killer: System Information 2014 - Video - February 23rd, 2014 [February 23rd, 2014]
- Ultra Virus Killer: Change Background/Skin 2014 - Video - February 23rd, 2014 [February 23rd, 2014]
- Warning to rabbit owners to vaccinate - February 20th, 2014 [February 20th, 2014]
- 'Demon Killer' who tied SD card to cat pleads not guilty - February 13th, 2014 [February 13th, 2014]
- Killer whales die in rare New Zealand mass stranding - February 12th, 2014 [February 12th, 2014]
- Hospital warning parents about killer respiratory infection - February 10th, 2014 [February 10th, 2014]
- Download Ultimate Virus Killer Keygen [Updated February 2014] - Video - February 8th, 2014 [February 8th, 2014]
- Hidden Killer Part 2: The Promise of New Hepatitis C Treatments - February 6th, 2014 [February 6th, 2014]
- Download Ultimate Virus Killer Crack - Video - February 4th, 2014 [February 4th, 2014]
- Plant Virus Jumps 1.6-Billion-Year Species Barrier Killing Honeybees - February 2nd, 2014 [February 2nd, 2014]
- Threatwatch: Mother virus of China's deadly bird flu - February 1st, 2014 [February 1st, 2014]
- What’s at stake for Canada as pig virus spreads - February 1st, 2014 [February 1st, 2014]
- Hidden Killer Part 1: Why Doctors are Urging People to be Tested for Hepatitis C - January 31st, 2014 [January 31st, 2014]
- Killer Virus - Video - January 30th, 2014 [January 30th, 2014]
- Deadly pig virus spreads in Ontario - January 30th, 2014 [January 30th, 2014]
- What Is Norovirus? - January 30th, 2014 [January 30th, 2014]
- Ancient Teeth Reveal Plague's DNA - January 29th, 2014 [January 29th, 2014]
- Killer Flu Roams California - January 25th, 2014 [January 25th, 2014]
- Nutrition & Immunity - January 23rd, 2014 [January 23rd, 2014]
- Community rallies for sick firefighter - January 21st, 2014 [January 21st, 2014]
- Download Ultimate Virus Killer Keygen - Video - January 18th, 2014 [January 18th, 2014]
- A Flu Vaccine That s Always in Season - January 14th, 2014 [January 14th, 2014]
- Syfy’s Thriller ‘Helix’ Ratings Soft In Debut - January 14th, 2014 [January 14th, 2014]
- Pork producers fight their way through PED virus outbreak - January 13th, 2014 [January 13th, 2014]
- ultimate virus killer v1.21 intro for Amiga - Video - January 10th, 2014 [January 10th, 2014]
- Tackling canine parvovirus - January 10th, 2014 [January 10th, 2014]
- Hand Sanitizer: H1N1 Killer? - January 10th, 2014 [January 10th, 2014]
- Garlic Infection Fighter and Virus Killer - January 9th, 2014 [January 9th, 2014]
- Child among 20 dead in Texas as killer swine flu virus spreads - January 9th, 2014 [January 9th, 2014]
- Mexican technology saves papaya production by detecting virus - January 7th, 2014 [January 7th, 2014]
- Pneumonia no. 1 killer last year - January 7th, 2014 [January 7th, 2014]
- State hog numbers continue to plummet - January 5th, 2014 [January 5th, 2014]
- West Nile virus blamed for rash of bald eagle deaths in Utah - January 3rd, 2014 [January 3rd, 2014]
- Killer hepatitis on the prowl, warn experts - January 3rd, 2014 [January 3rd, 2014]
- East Lancashire vets in vaccination plea after puppy's virus death - January 3rd, 2014 [January 3rd, 2014]
- Neurological form of EHV-1 proves deadly for 4 Raleigh horses - January 1st, 2014 [January 1st, 2014]
- Swine Flu Spreading Across the US - December 29th, 2013 [December 29th, 2013]
- Rabies scare after vet bitten by puppy that had been frothing at the mouth and vomiting - December 29th, 2013 [December 29th, 2013]
- Killer Cold Virus (Adenovirus Infection, Ad14) (cont.) - December 28th, 2013 [December 28th, 2013]
- M Autorun Killer Smart Free Download - Remove Autorun.inf Virus - December 24th, 2013 [December 24th, 2013]
- Zeitmodelle - Weltraum - Video - December 22nd, 2013 [December 22nd, 2013]
- Serial killer Robert Pickton continues to deny his guilt in series of lawsuits against him - December 21st, 2013 [December 21st, 2013]
- Young killer cells protect against infectious mononucleosis - December 20th, 2013 [December 20th, 2013]
- Drug blocks HIV in lab study, human tests planned - December 20th, 2013 [December 20th, 2013]
- Narcolepsy confirmed as autoimmune disease - December 18th, 2013 [December 18th, 2013]
- BrainBashers : Virus Killer - BrainBashers Games : Games ... - December 18th, 2013 [December 18th, 2013]
- PCEU virus removal - Trojan Killer - December 18th, 2013 [December 18th, 2013]
- Virus killer Free Download - December 16th, 2013 [December 16th, 2013]
- Ultra Virus Killer - Malware Removal and System Repair Multi-Tool - December 16th, 2013 [December 16th, 2013]
- Cancer, number one killer disease in Nigeria – Olaleye - December 12th, 2013 [December 12th, 2013]
- The New and Improved Flu Killer - December 12th, 2013 [December 12th, 2013]
- AIDS campaigners recall Mandela's initiative to combat killer disease - December 6th, 2013 [December 6th, 2013]
- AIDS remains a killer in many communities - December 5th, 2013 [December 5th, 2013]
- Tibaldo: Let’s Help Revitalize the Baguio AIDS Watch Council - December 4th, 2013 [December 4th, 2013]
- 'Serial Killer' Hospital Worker David Kwiatkowski Injected Victims with Hepatitis C - December 4th, 2013 [December 4th, 2013]
- Nigeria: HIV/Aids Still On the Rampage - December 2nd, 2013 [December 2nd, 2013]
- Review of AIDS law urged - December 2nd, 2013 [December 2nd, 2013]
- Bats are original carriers of Sars virus: Research - December 1st, 2013 [December 1st, 2013]
- Protein Analysis Could Lead To Hepatitis C Vaccine - December 1st, 2013 [December 1st, 2013]
- Scripps Research Institute Scientists Achieve Most Detailed Picture Ever of Key Part of Hepatitis C Virus - November 28th, 2013 [November 28th, 2013]
- Scientists achieve most detailed picture ever of key part of hepatitis C virus - November 28th, 2013 [November 28th, 2013]
- Facebook Links Suspected Child Killer To HIV-Crime Suspect - November 22nd, 2013 [November 22nd, 2013]