Slashdot Mirror

← Back to Stories (view on slashdot.org)

Kaspersky To Demo Attack Code For Intel Chips

Posted by ScuttleMonkey on from the also-releasing-a-paint-by-number dept.

snydeq writes "Kris Kaspersky will demonstrate how attackers can target flaws in Intel microprocessors to remotely attack a computer using JavaScript or TCP/IP packets, regardless of OS. The demo will be presented at the Hack In The Box Security Conference in Kuala Lumpur in October and will show how processor bugs can be exploited using certain instruction sequences and a knowledge of how Java compilers work, allowing an attacker to take control of the compiler. The demonstrated attack will be made against fully patched computers running a range of OSes, including Windows XP, Vista, Windows Server 2003, Windows Server 2008, Linux, and BSD. An attack against a Mac is also a possibility."

7 of 303 comments (clear)

  1. Re:Heh... by hostyle · · Score: 5, Interesting

    I wonder if running inside a VM could at all mitigate the attack.

    --
    Caesar si viveret, ad remum dareris.
  2. Re:Heh... by at_slashdot · · Score: 4, Interesting

    At least I know I'm safe because I run... Oh, crap.

    I'm sure AMD fans will make a point that they are protected in this case.

    --
    "It is our choices, Harry, that show what we truly are, far more than our abilities." -- Prof. Dumbledore
  3. Which ones? by Taibhsear · · Score: 5, Interesting

    Do we have a list of the processors affected by this? Or is this issue in ALL Intel processors?

  4. Re:That's Nothing, This November I'm Going To... by ergo98 · · Score: 5, Interesting

    Okay, seriously -- based upon nothing but an overly bold claim featuring some massive technical faults, people are actually believing this? My post should be +5 insightful, not funny, because it really isn't intended to be funny.

    Are people perhaps thinking this is Eugene Kaspersky or something? This guy is no relation to him.

    Maybe, just maybe, someone really is going to sit on an epic, world shaking fault until an October security conference, but every bullshit detector is ringing as loudly as it can ring right now.

    October will roll around and some guy will demonstrate some edge condition non-issue and say "Oh, did they misinterpret and overstate? Those bastards!"

  5. Re:That's Nothing, This November I'm Going To... by Ant+P. · · Score: 5, Interesting

    Sounds like they might have found a practical exploit for one of the many bugs in the Core/2 that OpenBSD were throwing a fit about when it was released. Maybe they were right.

  6. Disable scripting/plug-ins by default/use NoScript by the+JoshMeister · · Score: 4, Interesting

    If malware based on this "attack code" got into the wild, it sounds like one of the attack vectors would be malicious Web sites (which is nothing new). As many security researchers have been recommending for years, turning off JavaScript and other active content by default will greatly reduce the potential for infection, even from many kinds of as-yet undiscovered exploits. A good way to do this with Firefox (without ruining compatibility with trustworthy sites) is to install NoScript, which allows you to whitelist trusted sites while allowing you to block scripts, Java, Flash, Silverlight, other plug-ins, etc. on every other site by default.

    Of course, if the flaw lies in the microprocessor, then there are certainly other potential attack vectors than just malicious Web sites.

    Someone pointed out that Intel processors are BIOS-upgradeable. What about computers based on EFI instead of BIOS, such as all the Intel-based Macs?

    Also, as someone else pointed out, the headline is extremely misleading. The security researcher Kris Kaspersky is not affiliated with Kaspersky Lab or Eugene Kaspersky, but he's apparently the author of a number of books on programming and other computer subjects.

    --
    the JoshMeister on Security
  7. Comment removed by account_deleted · · Score: 5, Interesting

    Comment removed based on user account deletion