Le 01/11/2013 09:57, Marko Cupać a écrit : > I just read an article on slashdot which says that a piece of > malware made "Open BSD operating system (...) modify its > settings and delete its data without explanation or prompting", and > that malware is spreading over microphone and speakers. > > Is this just some kind of negative publicity on a day of OpenBSD 5.4 > release, or there is something to it? >
Giving a link would have been better. The article in question is: http://slashdot.org/index2.pl?fhfilter=settings+and+delete+its+data+without+explanation+or+prompting which refers to this: http://arstechnica.com/security/2013/10/meet-badbios-the-mysterious-mac-and-pc-malware-that-jumps-airgaps/ And this article talks about BIOS infection, not system infection. They just say they tested on OpenBSD, and it gave the same results as for Windows and Linux. If your BIOS gets infected, you're gonna have a bad time, regardless of your system. So no, it's not a negative plublicity for OpenBSD. Now, concerning the "badBIOS virus" itself. If you read the arstechnica article, you will see that it is full of non-senses, and it is clear that the guy who wrote this article is far from being an expert. Moreover, there's no source, no binary sample, no PoC. They just use sweet words like "intriguing", "highly unusual", "Stranger", etc., but they never provide any technical detail. If you want my opinion: such articles are not to be trusted. *Real threats* are not "documented on Google Plus", and not disclosed that way.
