Apparently not that easy, or maybe it is but it just can’t be done.
Interestingly, there is one other theoretical option to ultimately get rid of Kelihos: we know how the bot’s update process works. We could use this knowledge and issue our own update that removes the infections and terminates itself. However, this would be illegal in most countries and will thus remain theory.
This scenario is actually explored in the book “Stealing the Network: How to own the box.”
In related news; a year or so after Bradley Manning wreaked havoc on the diplomatic efforts of the US by downloading and ultimately releasing a gazillion diplomatic cables to Wikileaks the government finally gets around to plugging that hole.
WASHINGTON — The White House plans to issue an executive order on Friday to replace a flawed patchwork of computer security safeguards exposed by the disclosure of hundreds of thousands of classified government documents to WikiLeaks last year.
…
Computer security analysts say these safeguards, as well as others in the executive order aimed at bringing greater consistency and accountability to information sharing and protection policies, are long overdue, and lag behind what is routine in the private sector.
No comments:
Post a Comment