Thursday, 14 May 2015

GPU Malware Jellyfish Created - Targets Windows Nvidia Users


A Linux-based malware program designed to target GPUs could also be used to hit Windows users, a team of anonymous developers have revealed. A proof-of-concept program has been released demonstrating how the Jellyfish malware can hit Windows users’ graphics cards, with a Mac OS X version also in the works.

The developers claim the malware was created in order to raise awareness of the potential for GPU viruses, stating current anti malware software doesn’t scan graphics cards. Despite this, they have released the source code, so those who have the know how will be able to cobble together GPU-targeting malware for malicious purposes.

The malware is dubbed WIN_JELLY and acts as a Trojan, giving the operator remote access to a PC. The current build of WIN_JELLY runs on Windows-based operating systems using Nvidia graphics cards with the latest CUDA drivers installed. The malware targets Nvidia’s CUDA core computing platform, although its effects are unknown.

As it stands this only affects users with Nvidia CUDA installed, but it likely won’t be long until its reach is expanded. Next up is MAC_JELLY, which is, in theory, an easy to target for them. Mac OS X runs OpenCL framework natively and can be used to run code on GPUs.

At the moment anti-malware tools don’t event attempt to look for malicious software running on discrete hardware devices, but the anonymous group want something done about it soon. Conveniently the group is also working on a JellyScan tool as well, designed to do exactly that, scan for GPU-based malware.
Worried about potential malware targeting your GPU? 


No comments:

Post a Comment