Russia’s Infamous Election Hackers Are at it Again
Russia Election Meddling
Yesterday, Trump went on and on with accusations that are completely baseless against China, claiming that they are attempting to meddle in our latest round of elections.
What’s really true however is that reports are beginning to surface implying that Russia’s GRU, better known as Fancy Bear (U.S. intelligence agencies have identified Fancy Bear as two units within Russia’s military intelligence directorate), has secretly developed and deployed new malware that seems to be impossible to eradicate, capable of surviving a complete wipe of a target computer’s hard drive, and will allow the hackers to return as many times as they would like.
The European security company ESET discovered the new malware and reported that It works by rewriting the code that is flashed into a computer’s UEFI chip that controls the boot and reboot process.
The code is designed to maintain access to a high-value target in the event the operating system gets reinstalled or the hard drive replaced, which under normal circumstances would eradicate the malware.
This not the first code to hide in the UEFI chip and Russia’s new malware works only on PCs with security weaknesses in the existing UEFI configuration.
Not in this case, the new malware does seem to prove that Fancy Bear is more robust, powerful and potentially dangerous than the world previously thought.
Cristal M Clark