This video was presented at the 35C3 conference in Germany last week. The presenter is highly credible on the topic.
Hardware implants and supply chain attacks have been in the news recently, but how feasible are they and what can we do about them? In this talk we’ll examine the design of a proof of concept SPI bus hardware implant that has similar capabilities to those described in the Bloomberg/Supermicro article as well as some countermeasures that we can use to try to detect these “modchips” and increase our trust in our systems.
Key bullet points:
- Hardware implants not impossible but impractically difficult to achieve. And its hard to remain undetected.
- You can compromise the BMC controller without too much effort
- It could be possible to persistently escalate control from the BMC to the VM/Hypervisor
- The recent Bloomberg claims about hardware implants remain unsubstantiated and continue to lack credibility.