Tag: dragos

Siemens industrial plant firmware malware

~ hucktech ~ Leave a comment

Quoting the Register article:

[…]Malware posing as legitimate firmware for Siemens control gear has apparently infected industrial equipment worldwide over the past four years. The cyber-nasty is packaged as software to be installed on Siemens programmable logic controllers (PLC), we’re told. At least 10 industrial plants – seven in the US – were found running the infected firmware, a study by industrial cybersecurity firm Dragos claims. According to the Texas-based biz, this particular malware was specifically thrown at industrial control equipment. Exactly what it does, or did, is not explained, although it is described as “crimeware”. […]

The Dragos blog post is worth reading:

https://www.theregister.co.uk/2017/03/22/malware_siemens_plc_firmware/

https://dragos.com/blog/mimics/

 

 

AMI’s firmware tools, and Rowhammer

~ hucktech ~ Leave a comment

I’m confused. Dragos points to AMI’s Utilities page and mentions that AMI now has Rowhammer protection. But I don’t see where he’s getting the Rowhammer improvement. If someone knows what he’s talking about, please speak up.

I do wish that AMI would make these tools available to sysadmins and security researchers, not just for their partners. Imagine how much harder it would be to diagnose Windows app problems if Microsoft did not make their SDK available to the public. That’s what it is like with firmware vendors and their tools. 😦

BIOS/UEFI Utilities for Aptio and AMIBIOS
http://ami.com/products/bios-uefi-tools-and-utilities/bios-uefi-utilities/