Iron Fog: mal-machine mark 1

Tuesday, April 21, 2009

mal-machine mark 1

Reuven at Elastic Vapor posted Introducing The Virtual Machine Trojan on a PoC tool called ViMtruder. It demonstrates Kris Buytaert's concerns on portability of malicious code inside VMs, but I still believe that downloading a random VM from an untrusted source without doing your due diligence is asking for trouble, whether or not this trojan was available.

2 comments:

Sam JohnstonApril 22, 2009 at 4:11 AM
How is this any different from any other piece of software created since the start of [unix] time?

Sam
ReplyDelete
Replies
BenApril 22, 2009 at 9:50 PM
Sam - you're absolutely right, it's not, that's the point - I don't think the trojan in a VM makes any difference. If people are willing to download code (or a VM) from an untrusted source, the existence of ViMtruder doesn't make you any worse off security wise.
ReplyDelete
Replies

Add comment

Plain Text Disclaimer

The thoughts on this blog are mine (or at least the derived versions thereof are) and I take responsibility for them.

I have an employer, a good employer that treats me kindly, but it's important to note that nothing I say is in any way reflective of their opinion on any matter nor should anyone think that I am speaking on their behalf. They have an official website and media people for that.

That same said employer sells stuff, not least of all my time as a consultant, but this is something I do on my own time because it's fun and of personal interest to me.

Iron Fog

Tuesday, April 21, 2009

mal-machine mark 1

2 comments:

Blog Archive

Obligatory Headshot and Blurb

Twitter

Twitter

Plain Text Disclaimer

these are not the droids you're looking for