Stoned Lite Bootkit that Attacks Windows 8 Developer Preview [Video]

An Autralian security researcher, Peter Kleissner, has developed "Stoned Lite" bootkit designed to infect the Windows 8 MBR. The bootkit specifically demonstrates of how the User Account Control (UAC) in Windows 8 Developer Preview can be defeated.With Windows 8, Microsoft plans on including a variety of new security features, starting with the UEFI-based secure boot, […]

An Autralian security researcher, Peter Kleissner, has developed "Stoned Lite" bootkit designed to infect the Windows 8 MBR. The bootkit specifically demonstrates of how the User Account Control (UAC) in Windows 8 Developer Preview can be defeated.

With Windows 8, Microsoft plans on including a variety of new security features, starting with the UEFI-based secure boot, which is mandatory for all OEMs who plan on being UEFI-certified.

Kleissner, however, proves that there still are some flaws in Microsoft's products, and that the company should consider adding more security features into the mix. It was also developed so as to patch the password validation function, thus Art of Bootkit Development Presentation of Stoned Lite Bootkit Attacks for Windows 8 Developer Previewenabling the use of any password with any account.

The bootkit will store components outside the normal file system, and will have startup files hooked before Windows actually starts. And, remains active in the memory, and can be launched from an USB drive or even from a CD.

Kleissner on November 25th at Malcon 2011, presented "The Art of Bootkit Development" presentation that features his new bootkit "Stoned Lite" that attacks Windows 8 Developer Preview.

About The Author

Deepak Gupta is a IT & Web Consultant. He is the founder and CEO of diTii.com & DIT Technologies, where he's engaged in providing Technology Consultancy, Design and Development of Desktop, Web and Mobile applications using various tools and softwares. Sign-up for the Email for daily updates. Google+ Profile.