Slashdot Mirror
New 'Phlashing' Attack Sabotages Hardware
yahoi writes "A new type of denial-of-service attack, called permanent denial-of-service (PDOS), damages a system so badly that it requires replacement or reinstallation of hardware. A researcher has discovered how to abuse firmware update mechanisms with what he calls 'phlashing' — a type of remote PDOS attack."
FINALLY! *This* is bricking
Phlashing? And he calls his demo code PhlashDance? Good way to make this seem completely silly. "Damn it, we've been phlashdanced!" That'll really get management to up your security budget, if they ever stop laughing.
It figures that when "bricking" might be remotely appropriate, they pick something worse.
It could have been remote bricking, BOIP(brick over IP), brick-and-run, packet bricking, warbricking.
Even brick-o-gram(landshark).
Sigh...
nah - his tool's called PhlashDance, which made me go all warm and fuzzy at the thought of Jennifer Beals stamping on my fimware in her heels :P
One swallow does not a fellatrix make
I pheel it phaitphully phollows the phirst uses oph it.
It sure as hell beats phbricked.
Dear Sir, I am the former son of the Nigerian dictator Sonni Abacha. I would like to give you several million dollars. To receive this, please add a static IP to your D-Link router and reboot it.
If you haven't made a developer cry, you've wasted a day.
No doubt all his equipment works exactly as he expects it to.
He would probably be outright offended if he heard about Rockbox or other projects where people are *writing* their own firmware.
Nerd rage is the funniest rage.
This is why, Flash must die!
We will bankrupt ourselves in the vain search for absolute security. -- Dwight D. Eisenhower
Reminds me of the European Commission
The European Commission has announced an agreement whereby English will be the official language of the EU, rather than German, which was the other contender. Her Majesty's Government conceded that English spelling had room for improvement and has therefore accepted a five-year phasing in of "Euro-English".
In the first year, "s" will replace the soft "c". Sertainly, this will make sivil servants jump for joy. The hard "c" will be dropped in favour of the "k", Which should klear up some konfusion and allow one key less on keyboards.
There will be growing publik enthusiasm in the sekond year, when the troublesome "ph" will be replaced with "f", making words like "fotograf" 20% shorter.
In the third year, publik akseptanse of the new spelling kan be expekted to reach the stage where more komplikated changes are possible. Governments will enkourage the removal of double letters which have always ben a deterent to akurate speling. Also, al wil agre that the horible mes of the silent "e" is disgrasful.
By the fourth yer, peopl wil be reseptiv to steps such as replasing "th" with "z" and "w" with "v".
During ze fifz yer, ze unesesary "o" kan be dropd from vords kontaining "ou" and similar changes vud of kors be aplid to ozer kombinations of leters. After zis fifz yer, ve vil hav a reli sensibl riten styl. Zer vil be no mor trubls or difikultis and everivun vil find it ezi to understand ech ozer. ZE DREM VIL FINALI COM TRU!
Herr Schmidt
The last time I "phlashed" someone in real-life I received a permanent injunction and restraining order from a very nice judge in court. I guess you can call that a permanent denial of service.
I'm in a lot of trouble. By those rules, by Year 5 there won't be any letters left in my first name.
Sincerely yours,
*
"Here's what's happening. You're starting to drive like your Dad..." - Red Green
Oh no. My machine is phukked.
> I'm sick of this naming phad.
Yeah it's phucking stupid. The stupid phuckwits should take some time to phink of a better name.
Cphethw, is that you!?
My blog