Archives for DEITYBOUNCE

Hard Drive Firmware Implant IRATEMONK

Here is yet another one of the NSA’s firmware implants which can be used to replace your current hard drive’s firmware. This allows the NSA to gain complete control of your hard drive and through the use of other exploits they would be able to gain complete access to your system.   What It Is IRATEMONK is a firmware implant that replaces your current hard drive’s firmware and is used as a backdoor into your system. IRATEMONK gains execution through the Master Boot Record (MBR) substitution. IRATEMONK supports the following hard drive vendors: Western Digital, Seagate, Maxtor, and Samsung. IRATEMONK
Read More

Categories: Information Technology, IT Security, and Preston Hood.

Dell PowerEdge Servers BIOS Exploit DEITYBOUNCE

DEITYBOUNCE is a software exploit that exploits the BIOS on Dell PowerEdge servers, utilizing System Management Mode (SMM) to gain periodic execution while the Operating System loads.   What It Is As I said above DEITYBOUNCE is a software exploit that exploits the BIOS on Dell PowerEdge servers. To re-flash the BIOS on a target machine the NSA uses ARKSTREAM. ARKSTREAM is used to implant DEITYBOUNCE and its payload or the implant installer. Once DEITYBOUNCE has been implanted onto the target system its frequency of execution (dropping the payload) is configurable and occurs when the system is powered on. It
Read More

Categories: Information Technology, IT Security, and Preston Hood.