From: "~BD~" <~BD~@nomail.afraid.org>

> G. Morgan wrote:
>> David H. Lipman wrote:
>>
>>> You recall WRONG. I elaborated how difficult it was and all the obstacles there were
>>> to
>>> overcome and said there was nothing in the wild at that time
>>
>> That's the way I remember it.
>>
>> You said it was possible, but none had been seen in the wild yet.
>
>
> LoJack can *already* do it!!!
>
> Just because Mr Lipman hasn't seen versions 'in the wild' does *NOT* mean that there
> aren't such malware scenarios.
>
> I'll wager the bad guys are *way* ahead of those who try to catch them!

LoJack is a different animal altogether and CAN NOT be lumped together with mebromi
trojan.

Mebromi is malware. LoJack is not.

LoJack is loaded in an area of extra ROM at the factory and is designed to be there. For
malware to be loaded in ROM at the factory we would have a whole different scenario which
is called the Insider Threat.

Mebromi uses a cludgy method of ROM injection based upon the IceLord proof of concept.

LoJack in no way injects itself into ROM.

You have a *bad* reading and comprehension problem!

--
Dave
Multi-AV Scanning Tool - http://multi-av.thespykiller.co.uk
http://www.pctipp.ch/downloads/dl/35905.asp