Can a BIOS virus bypass OS detection?

Discussion in 'other security issues & news' started by R2D2, Feb 23, 2006.

Thread Status:
Not open for further replies.
  1. R2D2

    R2D2 Registered Member

    Joined:
    Nov 26, 2004
    Posts:
    70
    Location:
    Tatooine
    Would a BIOS virus be able to enter through an open port and pass directly to the BIOS flash memory on the motherboard to bypass detection from the operating system? I don't think either a firewall or port detection software would detect such an event since they are part of the bypassed OS. Maybe a router is the best defense against it. I don't know...just something I thought of.
     
  2. BlueZannetti

    BlueZannetti Administrator

    Joined:
    Oct 19, 2003
    Posts:
    6,590
    Short answer, no.

    Ports don't work that way (i.e. as a physically distinct pipe). If you have a firewall active, how does this avoidance actually happen? Also, an application needs to write the viral code to flash memory and that needs to run off of the CPU, which means it needs to be loaded by the OS. No, PC's basically don't work the way you seem to have in mind.

    Blue
     
  3. R2D2

    R2D2 Registered Member

    Joined:
    Nov 26, 2004
    Posts:
    70
    Location:
    Tatooine
    Hi Blue,

    Thanks for that info. Good to know.:)
     
Loading...
Thread Status:
Not open for further replies.