Evil Maid

Tiny Evil Maid CHKDSK Utility Can Steal Passwords

Stealthy malware that can sneak onto machines during the boot process and remain undetected indefinitely is one of the brass rings of security research. There have been a number of tools developed over the years that aimed to accomplish this goal, with Joanna Rutkowska’s Evil Maid attack being perhaps the most famous. Now a developer in Canada has produced a similar tool that  impersonates the CHKDSK utility and can grab a user’s password and then exit without the user’s knowledge.

Subscribe to our newsletter, Threatpost Today!

Get the latest breaking news delivered daily to your inbox.