this post was submitted on 10 Aug 2024
26 points (82.5% liked)
PC Gaming
8573 readers
420 users here now
For PC gaming news and discussion. PCGamingWiki
Rules:
- Be Respectful.
- No Spam or Porn.
- No Advertising.
- No Memes.
- No Tech Support.
- No questions about buying/building computers.
- No game suggestions, friend requests, surveys, or begging.
- No Let's Plays, streams, highlight reels/montages, random videos or shorts.
- No off-topic posts/comments, within reason.
- Use the original source, no clickbait titles, no duplicates. (Submissions should be from the original source if possible, unless from paywalled or non-english sources. If the title is clickbait or lacks context you may lightly edit the title.)
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
Requires ring 0 access to the system in the first place. So for any normal user it's a nothing burger
Not quite a nothingburger
Woudn't secure boot catch this as long as you don't have one of the boards with the do not use key.
I know, but this requires a supply chain attack - not a likely thing to happen,
This does not require a supply chain attack, just a user ignorantly clicking yes on a UAC prompt. After which the machine is forever compromised, even after replacing ssds / hdds.
Wouldn't it be fixed by wiping the drives and re flashing the bios ? (Or the opposite order)
From my understanding it allows malicious code to be installed in protected memory on the CPU itself, so you can't get rid of it once it's there without a lot of extra work
Not entirely a nothing burger, I think. If there’s any truth to the anti-cheat outrage, there’s a large population of average joes handing out ring 0 access to a growing number of third or fourth party companies for the purpose of kernel level anti-cheat in video games.
Still a supply chain attack or a vulnerability in one of the A/C programs, but not as impossible as we would like it to be.
I really dislike the idea of "needs ring 0 = nothingburger".
There's plenty if ways to gain ring 0 access like a user to approving a UAC prompt... Or for an attacker to utilize any number of existing ring 0 escalation vulnerabilities on an unpatched system, or for a UAC bypass to be utilized, or for the attacker to establish a RAT on the system using a tech support scam or similar.
Difficult? Yes!
Only viable via a supply chain attack as some like to suggest? Absolutely not.