Redmond has been challenged again, and this time there may not be an answer.
To our surprise, the problem was not with Windows Vista, but rather Windows 7. Two hackers claimed to have developed a Windows 7 hack that’s “unfixable.”
The hack, dubbed vBootkit 2.0, is a very small 3 KB program that loads itself into the computer’s memory during the boot up process, making alterations to Windows 7 files as they are loaded into the system’s memory. This process makes the hack very difficult to detect, because the files on the hard drive are not changed. Once loaded, the program can provide the hacker unfettered access to the hard drive, allowing the unwelcomed user to change user passwords, access password protected information, to provide remote accessibility or to destroy critical information and system files. All can be accomplished without leaving a trace behind, except for the fact that your files have “gone missing.”
Believe it or not, there is an upside to this exploit. Currently, the hack cannot be performed remotely and only works when a user has physical access to the computer. It’s probably a very good time to review your physical security plans.
- John and Mike
(703) 359-0700
digitalsamurai@senseient.com
www.senseient.com
