Risky Business 67: Firmware pwnage

Security researcher John Heasman has learned it is possible to load undetectable rootkits into PCI devices, as we explain in this week's Risky Business security podcast.

Patrick Gray

Published: 24 Jun 2008 5:00

This week’s Risky Business security podcast looks at firmware root kits with John Heasman from the US arm of NGS Software. Download it here:

http://itradio.com.au/security

Some time ago, John figured out how to plonk a root kit on to a PCI device.

As you can imagine, those sorts of root kits can be very difficult to detect and remove.

But it gets worse.

Newer research, due to be presented at BlackHat in Las Vegas, will show how the CPU on some PCI devices (like the chip on network devices designed to do TCP checksum calculations) can actually be used to run the root kits.

That means they never gets loaded into main memory. Try detecting that!

5 post cloud migration risks and how CIOs can avoid them

We've covered issues that arise when making the move to the cloud but here we're diving into the challenges CIOs and their IT ...

CIO strategies for COVID-19 require new long-term IT planning

CIOs should look beyond the immediate IT requirements created by the COVID-19 outbreak and think about what will be needed in ...

Leaders discuss challenges, strategies for women in IT

Women in tech still face challenges, including finding opportunities for advancement and management support. A recent panel of ...

SearchSecurity

How to fortify IoT access control to improve cybersecurity

Security technology is still playing catch-up with the new risks and attack vectors associated with IoT. Learn how to improve IoT...

SASE adoption accelerating as workforce goes remote

Experts suggest enterprises should consider SASE adoption for network security as the remote workforce grows in order to reduce ...

12 Microsoft 365 security best practices to secure the suite

Migrating to or operating cloud-based Microsoft 365 can bring with it a host of problems and misconfigurations. Check out 12 best...

SearchNetworking

A glossary of home network basics for the networking novice

A remote employee's home network requires basics such as routers, modems and VPN services. For the networking novice, this ...

Cisco acquisition of ThousandEyes has many user benefits

Cisco's acquisition of ThousandEyes could benefit companies using Cisco's SD-WAN, AppDynamics, Duo Security and AnyConnect. Cisco...

Wi-Fi vendors pitch people tracking for COVID-19 safety

Wi-Fi vendors Aruba and Juniper Networks work with partners to offer in-office people tracking to defend against a COVID-19 ...

SearchDataCenter

Pick a data center layout: Raised floors vs. overhead cabling

There's no definitive design when it comes to data center infrastructure. Cost, manageability and cooling effectiveness are all ...

Traditional vs. converged vs. hyper-converged infrastructure setups

HCI clusters, converged infrastructure and rack servers all offer benefits for a data center. Still, figuring out which is easier...

IBM layoffs target services, marketing employees

IBM layoffs under newly appointed CEO Arvind Krishna largely affect its Global Technology Services and marketing groups.

SearchDataManagement

Big data security management embraces governance, privacy

Cyberattacks, GDPR and CCPA compliance, and COVID-19 present serious security and privacy challenges for managers tasked with ...

GDPR, CCPA, cloud drive security management tool makeovers

As data protection and privacy laws like GDPR and CCPA take hold, data managers refine governance practices, while vendors ...

Improving enterprise data governance with data trust

Talend users from Covanta and AutoZone provide insight into data management challenges amid growing data complexity at the Talend...

Risky Business 67: Firmware pwnage

Security researcher John Heasman has learned it is possible to load undetectable rootkits into PCI devices, as we explain in this week's Risky Business security podcast.

Read more on Security policy and user awareness

I/O virtualization (IOV)

RoughTed malvertising peaked in June, reveals Check Point

How did vulnerabilities in AirWatch Agent and Inbox work?

Business needs to prioritise cyber attack detection, says Cisco

Start the conversation

0 comments

Please create a username to comment.

-ADS BY GOOGLE

SearchCIO