US gov creates spyware that invades the firmware of HDDs
The US government has developed spyware that invades the firmware of hard drives and eavesdrops on everything the user does. The software has been found on the computers around the world.
The latest spyware software was discovered by the Russian computer security company, Kaspersky Lab, which found computers of government and military institutions, telecommunication companies, banks, energy companies, nuclear researchers, media, and Islamic activists were infected.
The software was found in 30 countries, including Iran, Russia, Pakistan, Afghanistan, China, Mali, Syria, Yemen and Algeria. But only a few high-valued computers were infected.
The company declined to publicly name the country, but said it was closely linked to Stuxnet, the US-led cyberweapon that was used to attack Iran’s uranium enrichment facility. However, a former intelligence operative confirmed the US National Security Agency (NSA) developed the technique.
The firmware of hard drives is highly valued among spies and hackers as any malicious software that is stored there runs automatically every time a computer is turned on and the software is near impossible to remove, even when the hard drive is wiped completely.
The US government and the NSA declined to comment.
The spyware software works on most major hard drive manufacturers, including Western Digital, Seagate, Toshiba, IBM, Micron and Samsung. Western Digital, Seagate and Micron said they had no knowledge of it, and Toshiba, Samsung and IBM have not yet commented publicly.