New iLOBleed Rootkit Targeting HP Enterprise Servers with Data Wiping Attacks

62
New iLOBleed Rootkit Targeting HP Enterprise Servers with Data Wiping Attacks

A previously unknown rootkit has been found to be deploying Hewlett-Packard Enterprise’s Integrated Lights-Out (LO) server management technology to run wild-type attacks that disrupt firmware modules and completely erase data from infected systems.

The discovery, the first example of a malicious computer program in the real world by the ILO firmware, was written by Iranian Internet security company Amnpardaz this week.

“There are many features of the ILO that make it ideal for non-computer systems and APT teams: Highly privileged (above any level of access to the operating system), very low access to hardware, completely invisible. Management, and security tools, lack of information and ILO testing tools and / or protection, the persistence it offers so that malicious software stays in place even after changing the operating system, and in particular it is always working and never shut down, ” the researchers said.

Read More: Thehackernews

For more such updates follow us on Google News ITsecuritywire News