Great! 100% undetectable Malware!
This post was published 3 years 8 months 20 days ago which may make its actuality or expire date not be valid anymore. This site is not responsible for any misunderstanding.Oh happy day. Rootkit researchers claim to have created a form of malware which is “100 percent undetectable”.
Joanna Rutkowska, a stealth malware researcher at Singapore-based IT security firm COSEINC, says the new Blue Pill concept uses AMD’s SVM/Pacifica virtualization technology to create an ultra-thin hypervisor that takes complete control of the underlying operating system.
The Black Hat presentation will occur on the same day Microsoft is scheduled to show off some of the key security features and functionality being fitted into Vista.
The anti-Microsoft within secretly hopes that the ‘Blue Pill’ prototype will be secretly released on to the x64 system during the Vista feature(s) presentation… Queue Pinky & The Brain background melody.
i smell a lawsuit forming…
A lawsuit on what grounds?
The U.S. feds (CIA, NSA, ad naseum) have stated that there are common vulnerabilities in every O/S and that they can get in anyway.
So yes Virginia, there are 100% undetectable holes in your O/S. And if the feds have a way in, the crackers will too.
Lawsuit – doubt it. Microsoft wouldn’t want to risk the bad PR and a lawsuit wouldn’t stop a bloddy thing from happening anyway….
Link is broken
I f you do a little research on this concept, you will see that the researcher proposes that this “blue pill” can be implemented on any system using AMD SVM/Pacifica virtualization.
That means it is not Microsoft specific, but also includes Linux and BSD. The researcher also proposes that, while not tested, there is no reason that this same concept can not be implemented with an Intel chip. That brings the new Mactels into focus.
So if she is correct, 99.9% of the computers using a 64bit CPU are now vulnerable to an undetectable malware, regardless of chip manufacturer or operating system.
Scary only begins to describe this concept.