/r/badBIOS

Photograph via snooOG

BadBIOS and other firmware rootkits, nation-state spyware, interdiction and implants, forensics, how to air gap, hacking air gapped computers, side channel attacks, power line hacking, hacking smart homes, constructing faraday rooms, forensic bags, Libreboot, ultrasound and electromagnetic radiation (EMR) technical surveillance counter measures (TSCM) and shielding.

/r/badBIOS covers badBIOS and other firmware rootkits, nation-state spyware, interdiction and implants, forensics, how to air gap, hacking air gapped computers, power line hacking, hacking smart homes, constructing faraday rooms, forensic bags, Libreboot, ultrasound and electromagnetic radiation (EMR) technical surveillance counter measures (TSCM) and shielding.

Posts and comments submitted by nonapproved submitters automatically are directed to the spam filter waiting approval. If after your several days, your submission has not been approved, notify the mods using modmail.

Rules:

1) Please be open-minded and think outside of the box. Non-constructive criticism will not be tolerated. No swearing, bullying or doxxing.

2) No thread-jacking. Focus on the topic of the post.

3) If warned offenders attempt to evade committing a second offense by bullying /r/badBIOS and/or its mods in another sub, offenders will be banned.

Wiki

http://www.reddit.com/r/badBIOS/wiki/index

Traffic statistics

http://www.reddit.com/r/badBIOS/about/traffic/

Relevant Subreddits

/r/badBIOS

2,173 Subscribers

5

Happy Cakeday, r/badBIOS! Today you're 9

Let's look back at some memorable moments and interesting insights from last year.

Your top 1 posts:

0 Comments
2022/10/31
22:29 UTC

6

What is badbios

What the fuck is badbios and why is everyone here acting so crazy

Also is there a download for badbios if it even exists.

10 Comments
2021/09/06
19:33 UTC

9

All AMD CPUs Since Phenom II Have BadBIOS Circuitry that Leaks to the Military

Title gives my conclusion from empirical events I witnessed and inside info. PSP runs on the same circuit, but isn't the backdoor per se, which has been around for much longer.

The same way AMD was able to change the crypto algorithms for the Zen chip they licensed to China, they can change how the CPU behaves at any system, even those already deployed. This can also be used to sabotage any program or computation, making BadBIOS vastly nastier than Stuxnet.

American military made a grave mistake to partner with the morons of the Brazilian military, who are letting knowledge of this spread like a fire (and misusing it for petty profit and inside jobs to justify a police state). Israel, UK and France also have access, but are much more professional.

9 Comments
2021/06/06
02:18 UTC

14

No, my laptop isn't hacked...

I hate to make mistakes like this as it takes away from our credibility, but it's important to acknowledge the truth and own up to things.

This video I posted made it seem like my laptop was connecting to some secret 5G network and pretending to send data across the line.

Someone suggested I buy a switch and put one of the ports in "port mirroring" mode to view the traffic that way. After it surprisingly worked and seeing that my old desktop (the one my taps do work with) got an orange light from the switch (100 Mbps) and my laptop (the one my taps do not work with) got a green light from the switch (1,000 Mbps), I realized my Raspberry Pi 3 Model B isn't compatible with the Gigabit Ethernet on my laptop.

(That's the version and model written on my Raspberry Pi printed circuit board. I even connected it to my switch while not in promiscuous mode to see an orange light as B+ is potentially compatible, and I wanted to make sure I just had model B.)

Sorry about that. Hopefully, someone can learn from my mistake.

P.S. Thank you all for your helpful comments. I was able to figure out what was going on because of a suggestion in this subreddit. I'm also grateful you all were open-minded about what it could have been.

5 Comments
2021/04/10
13:52 UTC

5

[Ultrasound] I was asked to report this new acoustic cyber-weapon

Good afternoon, I conducted an analysis of a fairly new model of attack (APT) that includes malware and remote triggering to activate it. It effects the sound emitting from your devices and is very hard to identify. Matt Wixey presented his analysis at DefCon 2019 on the exact same subject that I had analyzed. Below are several videos and a PDF that you should download and read carefully.

I would also recommend reaching out to your device manufacturers and provide them with this link and information so that they can start putting mitigation processes and solutions in their devices and software to prevent these harmful attacks.

I've also included several other videos and an analysis of the effects.

Here is the report in PDF and the video is below that Wixey presented.

https://media.defcon.org/DEF%20CON%2027/DEF%20CON%2027%20presentations/DEFCON-27-Matt-Wixey-Sound-Effects-Exploring-Acoustic-Cyber-Weapons.pdf

DEF CON 25 - Matt Wixey - See no evil, hear no evil: Hacking invisibly & silently with light & sound

https://www.youtube.com/watch?v=gFTiD7EnVjU

SofWerx Analysis

https://www.youtube.com/watch?v=g3dS74TUHEI

Ultrasonic Emission from Television - Measured and Recorded

https://www.youtube.com/watch?v=7WGWQtNLMAQ&feature=youtu.be

Ultrasonic - Non-linear Sound Frequency Attack

https://www.youtube.com/watch?v=PHR8or5Ejjc&feature=youtu.be

Electromagnetic Cyber Attack similar to PowerHammer - Impacts air-gapped devices

https://www.youtube.com/watch?v=3uceI1wZljs

Frey Effect- Recorded with Otoscope - Linear recording Clip 02

https://www.youtube.com/watch?v=UATHXpaaNQk&feature=youtu.be

1 Comment
2021/03/20
18:43 UTC

3

Empresas que se dediquen a la detección de gps de rastreo ocultos

Se puede detectar un gps espia en un vehículo con garantías.

En esta web explican los pasos para saber como encontrar un localizador en un coche.

También hay una empresa especializada en este servicio: https://www.detectargps.es

Conoceís alguna mas empresa especializada, ademas de Santor, en estos servicios?

0 Comments
2021/01/31
08:39 UTC

6

WiGLE WiFi app reading inside my room

6 Comments
2021/01/17
02:22 UTC

5

My phone and internet are hacked to prevent me from submitting screenshots of numerous hidden SSID wireless networks. Black screen on phone. My computer cannot log into Reddit. I used a library computer to post this.

12 Comments
2021/01/14
21:07 UTC

2

WiFi Tool app discovered daily WiFi calling but Blackberry had not preinstalled wifi calling software on BB KeyOne.

1 Comment
2021/01/01
17:59 UTC

2

Is your hacked modem attacking you? Find out by using WiGLE Wi-Fi Wardriving app and Wi-Fi Tool app.

Physical attacks by modems are worse. Strong power density of numerous wifi signal points and hidden wireless networks. Their SSID is constantly changed. Numerous hidden wifi networks. More than typical bluetooth. LE is low power but their UUID is changed. /u/TOMDC777 and /u/DesperateYellow, you are both TIs. Could you please download WiGLE WiFi Wardriving app and submit a meter report in r/BadBIOS and crosspost in r/electromagnetics? Turn on bluetooth in the apps' settings. Take screenshots after an hour.

https://f-droid.org/en/packages/net.wigle.wigleandroid/

Next, download Wifi Tool:

https://www.reddit.com/r/Electromagnetics/comments/kobjfw/meter_apps_wifi_wifi_tool_by_helge_magnus_keck/

8 Comments
2021/01/01
15:06 UTC

1

r/badBIOS 2020 backup

2 Comments
2020/12/31
02:58 UTC

6

Building Your Own RISC-V CPU With SiFive

0 Comments
2020/12/31
01:15 UTC

10

Use RISC-V

0 Comments
2020/12/31
00:56 UTC

6

As a TI is it worth documenting or fighting against hacks against my devices or is it all pointless and a waste of time?

All of my devices have been hacked. On my main laptop issues persisted even after OS reinstall. I suspect they want to make me feel watched or followed (online at least) most of the time.

I have been reading and learning as much as I can about information security, operational security, among other stuff and am considering getting myself a new ThinkpadX230 laptop with Coreboot, Heads, and Qubes OS, but given that attacks have persisted for over half a decade now I'm left wondering if it is even worth spending the money on a new laptop only for it to get hacked again.

I have two questions for you:

  • 1 - Is it worth documenting the issues on my devices or even spending money having people more technical than me confirm that I indeed have malware on my computer given the fact that I may not be able to determine who the responsible party is?

  • 2 - Is it worth spending the time learning about security given that my adversary is likely a nation state and therefore anything I do to prevent attacks is pointless?

8 Comments
2020/12/17
05:34 UTC

0 Comments
2020/10/31
22:00 UTC

6

how do i decode the raw binary data of american megatrends bios?

We have a computer (running linux) that has a hardware watchdog feature installed on it running American Megatrends Bios Version 2.18.1263.

  1. We have code on how to enable and refresh this watchdog and it works well. This part works OK.

  2. Now the problem that we have is the following: If we refresh the watchdog and the PC has the watchdog function enabled in the BIOS then all is well and the PC works well. However if we refresh the AIO watchdog and the BIOS watchdog feature is disabled, then the PC will have a bad side effect of not being able to power on after a power reset or reboot. Additionally I have no code or ability to detect and avoid this situation by reading the watchdog BIOS setting.

Can you provide us code for any platform, preferably Ubuntu/Linux so that we can read the BIOS settings for the watchdog and determine if the BIOS watchdog feature is enabled or disabled. Then we can update the watchdog code to read this value.

4 Comments
2020/10/09
23:50 UTC

5

firmware implant

Hello, I'm absolutely sure that my pc is spied from an espionage group, because I reinstalled the os many times and different kind of os I suspect that is a firmware implant. Then my questions are:

  • Are there special kind of laptop that are more secure ? For example here I read that uefi3+tpm can help to have a more secure laptop.
  • Where a firmware rootkit can be installed ? Vga, acpi, bios others ? wifi chip ? eth controller ?
  • If I have such kind of malware what's the best way to remove it ? where ask help ?
1 Comment
2020/09/07
12:16 UTC

1

I believe computers are being intercepted in the mail by the NSA & CIA to have microscopic 5G antennas put in them to monitor your Internet activity.

Of course this is done only to certain individuals.

I discovered this by finding out NO data was going over my ethernet cords despite getting the Internet. No frequencies in the WiFi range were detected. After researching this topic and testing my computer with some hardware hacks, this is the only logical conclusion I can come to until I get a EMF meter that can test for 5G in the higher frequencies.

I know this is true as they started to blast me with DEWs once I started to write about it. My head hurts, my body burns, and this high pitch electronic sound won't go away.

It's a messed up world we live in.

7 Comments
2020/08/06
03:30 UTC

6

Volunteers wanted to help backup /r/BadBIOS!

Through the years, /r/BadBIOS has amassed a wealth of information that just grows bigger and bigger! But the web is not a static thing, so we have to make sure that this wealth of information is maintained for future reference and keep it available. Which is why we ask for help in this new project, to backup /r/BadBIOS!

You can help by volunteering to update the Wikis, but also by making suggestions about other ways to gather the material in /r/BadBIOS and keep it in a format suitable for use in other platforms. So if you have an idea about this project, chime in!

1 Comment
2020/05/08
06:46 UTC

2

New motherboard (H61) Coreboot Port (still in version 0.0.0.0.01 and not related to official corboot project yet)

0 Comments
2020/05/05
02:17 UTC

Back To Top