Archives for STUCCOMONTANA

NSA Device – STUCCOMONTANA

(TS//SI//REL) STUCCOMONTANA provides persistence for DNT implants. The DNT implant will survive and upgrade or replacement of the operating system – including physically replacing the router’s compact flash card. (S//SI//REL) STUCCOMONTANA Concept of Operations (TS//SI//REL) Currently, the intended DNT implant to persist is VALIDATOR, which must be run as a user process on the target operating system. The vector of attack is the modification of the target’s BIOS. The modification will add the necessary software to the BIOS and modify its software to execute the STUCCOMONTANA implant at the end of its native System Management Mode (SMM) handler. (TS//SI//REL) STUCCOMONTANA
Read More

Categories: Information Technology, IT Security, and Preston Hood.