New iLOBleed Rootkit Focusing on HP Enterprise Servers with Information Wiping Attacks
December 30, 2021Ravie Lakshmanan
A beforehand unidentified rootkit has been observed placing its sights on Hewlett-Packard Enterprise’s Integrated Lights-Out ( iLO ) server management technology to have out in-the-wild attacks that tamper with the firmware modules and entirely wipe info off the infected devices. The discovery, which is the initial instance of serious-environment malware in iLO firmware, was documented by Iranian cybersecurity firm Amnpardaz this week. “There are numerous areas of iLO that make it an perfect utopia for malware and APT groups: Extremely high privileges (previously mentioned any degree of accessibility in the operating program), extremely minimal-stage access to the components, being entirely out of the sight of the admins, and security applications, the general deficiency of knowledge and instruments for inspecting iLO and/or defending it, the persistence it offers for the malware to stay even immediately after modifying the working program, and in particular currently being constantly running and hardly ever shutting down,” the researchers mentioned . Apart from managin
Some elements of this posting are sourced from:
thehackernews.com