You do not want BMW; it is a Trojan that uses your master boot record and your BIOS to ensure that it remains on your system so even after a format and reinstall of Windows it will still be infecting you. It originally infects winlogon.exe on Windows XP and Server 2003, and to wininit.exe on Windows 7 and Vista but once it is on it installs and uses HOOK.ROM at the BIOS level to check to see if it has been uninstalled and if so it will reinstall itself. The Register points out that in this case the enormous variety of BIOS setups is a good thing as it ensures that any BIOS level virus will always be limited in scope even if it is a vulnerability shared by a single BIOS type.
"SECURITY RESEARCHERS at Chinese antivirus firm 360 have identified a piece of malware that installs rogue code into the BIOS of targeted computers.
Dubbed BMW by 360 and Mebromi by other security vendors, the threat has separate components for the operating system, the master boot record (MBR) and the system BIOS."
Here is some more Tech News from around the web:
- Intel changes radios on the fly @ SemiAccurate
- AMD: Windows-8-on-ARM app compatibility is relative @ The Register
- AMD FX-series Bulldozer chip pricing tips up @ The Register
- Linux.com pwned in fresh round of cyber break-ins @ The Register
- Epson WorkForce 840 All-in-One Printer Review @ Hardware Secrets
- Win a Mad Catz Cyborg R.A.T 7 Gaming Mouse – Abino Edition @ Tech-Reviews
- Tt eSPORTS Keyboard and Mouse Modding Contest
Does this virus effect EFI
Does this virus effect EFI BIOSes? Also I figure an easy way to get rid of it is to overwrite your BIOS. I assume the problem will be detection.
This is aimed at a specific
This is aimed at a specific Award BIOS, at least for the BIOS infection portion, so for now the UEFI style BIOSes are safe