LightEater malware attacks uEFI BIOSes
Click here to post a comment for LightEater malware attacks uEFI BIOSes on our message forum
primetime^
Corrupt^
tsunami231
Sweet malware for bios that almost never kept updated by the endusers, and the manufactures all but stop updating them after about 3 years or so??. there hasnt been update for my BIOS since 2011 then again I one those users that dont update bios unless there reason to, updating bios is more risky then update software. Then again maybe that all changed since the UEFI bios which i dont really like but they sure do boot faster then the old bios, atlest pre windows loading stuff is much faster.
My pre UEFI bios are safe expect for possible my sisters 2014 ASus laptop. which is 300$ pos that less powerful then my duo core 8400e system i gave to my dad. but better then the pos 1500$ broke sony laptop her bf gave her that he knew was broke too.
I stand by the saying newer dont mean better just means newer, this newer tech can be worse and apparently less secure too now hah
sykozis
UEFI is only "safe" if you enable SecureBoot, and the malware is trying to modify UEFI prior to Windows load. If it can modify UEFI from within Windows, there's nothing to protect UEFI systems. At least the old BIOS had a write-protect mechanism to prevent modifications/updates to the BIOS without entering the BIOS and manually changing the setting.
Extraordinary
LesserHellspawn
Sergio
Hi guys, sorry i am really noob to this uefi and new systems. I didnt build this system, and didnt install main OS either. Have win7 and win8.1(installed later) dual boot. Asus Z87-Deluxe with 1405 Bios
I looked msinfo32 and found only 2 lines about bios.
http://i.imgur.com/bEEfx7e.png
http://i.imgur.com/l3awDid.png
And i gone to bios and searched secure boot option, it was saying "Enabled", and security Key "loaded" (not sure exact option name). All two options grayed out. And below there is another option that takes me to KEY options.
Am i safe now?
Thanks.
edit: learned how to take bios screenshot, so here are the images of those options.
And i saw that my main SSD win7 OS is not labeled as UEFI at main bios screen. After inserting my USB stick i saw UEFI label on it , but not on main SSD.
http://i.imgur.com/oZcdeoL.png
http://i.imgur.com/B1xZz9m.png
http://i.imgur.com/klSBJbD.png
Pill Monster
orky87
Last security report was on HDD which have backdoors in their firmware, now this. As it is, it's only a theory and speculation nothing to be alarmed about.
By the time this malware becoms a real risk most mobo manufacturers will have safety measures implemented. Or so we'd like to think.
Agonist
pimp_gimp
Darkje
So any way to detect it? I'm guessing the virus won't show itself when you dump the uefi from an infected machine to a file, so it will be hard to detect it from a running machine with active 'virus'...
Extraordinary
anticupidon
Security logic tells me that nothing is secure,there are just levels of it.
More,there will always be the coflict between convenience and security.OEM offers just that,convenience,screw the average Jimmy who tinkers with his computer.
And when disaster strikes,just use the oldest trick in the book,by putting the blame on others.
TheDeeGee
Mine (F10) is from September 5th 2014 which is the latest.
Guess it needs an update aswell.
Pill Monster
Rich_Guy
waltc3
sykozis
Rich_Guy
We've survived this long, so...........