A Linux-based malware program designed to target GPUs could
also be used to hit Windows users, a team of anonymous developers have
revealed. A proof-of-concept program has been released demonstrating how the
Jellyfish malware can hit Windows users’ graphics cards, with a Mac OS X
version also in the works.
The developers claim the malware was created in order to
raise awareness of the potential for GPU viruses, stating current anti malware
software doesn’t scan graphics cards. Despite this, they have released the
source code, so those who have the know how will be able to cobble together
GPU-targeting malware for malicious purposes.
The malware is dubbed WIN_JELLY and acts as a Trojan, giving
the operator remote access to a PC. The current build of WIN_JELLY runs on
Windows-based operating systems using Nvidia graphics cards with the latest
CUDA drivers installed. The malware targets Nvidia’s CUDA core computing
platform, although its effects are unknown.
As it stands this only affects users with Nvidia CUDA
installed, but it likely won’t be long until its reach is expanded. Next up is
MAC_JELLY, which is, in theory, an easy to target for them. Mac OS X runs
OpenCL framework natively and can be used to run code on GPUs.
At the moment anti-malware tools don’t event attempt to look
for malicious software running on discrete hardware devices, but the anonymous
group want something done about it soon. Conveniently the group is also working
on a JellyScan tool as well, designed to do exactly that, scan for GPU-based
malware.
Worried about potential malware targeting your GPU?
No comments:
Post a Comment