Mebromi is the first BIOS rootkit in the wild. Here is the complete article.
How do we protect our computer systems now?The malware is called Mebromi and contains a bit of everything: a BIOS rootkit specifically targeting Award BIOS, a MBR rootkit, a kernel mode rootkit, a PE file infector and a Trojan downloader. At this time, Mebromi is not designed to infect 64-bit operating system and it is not able to infect the system if run with limited privileges.
---------- Post added at 03:33 AM ---------- Previous post was at 03:27 AM ----------
The article does mentions about CIH/Chernobyl infection, the infamous virus discovered in 1998 that was able to flash the motherboard BIOS, erasing it.This turned to be a very interesting discovery as it appears to be the first real malware targeting system BIOS since a well-known proof of concept called IceLord in 2007.
Thanks for the heads up linked. I wasn't aware of the existance of Mebroni and now I will stay alert for it.
Life isn't about waiting for the storm to pass, it's about learning to dance in the rain!
If the Mebromi rootkit is stable, then the coder must be really good at it.
The fact is it's not easy and very rarely people know how to code a BIOS rootkit.
I hope KIS has something in it's arsenal to fight this Mebromi.... I have only 16 days left before I buy a new subscription/ Win one here
Once Award BIOS had an antivirus inside (Trend Micro PC Cillin).a BIOS rootkit specifically targeting Award BIOS
Some motherboards have a backup BIOS
in regards to previous malware targeting BIOS you may like to read here
Errare humanum est, perseverare autem diabolicum
Thanks for the additional information Leo.