Can My Xbox Get Infected With A Virus? Options

[MaTiAz]

Q: Can my Xbox be infected with a virus?

A: No. The Xbox environment and the PC environment are so much different. Most malware code will run in a PC, but it will not run on Xbox. If you have installed Linux on your Xbox, your Linux files will only be infected if you got a Linux virus. I dont know if there are any Win2k kernel-level viruses, but if there are and they use some right kernel calls, they can make your Xbox malfunction, since Xbox is based on much stripped-down kernel of Win2k. If i got something wrong, please notify me about it.

[Softco Industries]

The new Slayer's EvoX Install Disk's script was switched to format all of the partitions on a user's Xbox HDD. This may be classified as a virus, because it deletes all the files on your Xbox!

[WaRnINg|]

Simple answer YES.. just give it some time before more start appearing.

[Musashi]

Yes, many people just want to fu$% up everyone else, and i believe someone will start releasing viruses for the xbox that will work natively on it.

[miazmaticdotcom]

Hmm, too bad it will affect only Xboxes that can run unsigned code. A virus by modders, for modders. Those fugly stock contraptions will be just fine, since M$'s bios will say, "No key? No run."

[BLazeD]

They wont be viruses as such

Just programs that will delete everything!

[psychogoblin]

Since xbox linux can read and write to xbox partitions, woudn't it be possible to write a virus that deletes files using a script or something in linux ?

[derived]

I'm surprised no one has written a virus that sends off your EEPROM data to some hotmail account.

[dman7]

So what's the best anwser to this, just copy the C: folder to the PC and do a virus scan?

[webscripter]

if the virus would be made for xbox it wouldn't be in any antivirus program.

[spacefrog]

MS or other software developers could be motivated to write a virus that only affects modified consoles.

Someone could release a game with a virus online for people to download.

It could patch itself to as many default.xbe's as it can find, wait 2 months and then try to reflash the bios, or delete the f:\

It might be able to attach itself to a saved game? so it can be spread via memory cards....

ooh... xbox live content!!! there are people that run modified consoles and turn off the mod to go on live.

I'm just giving MS some good ideas here, I'm sure they've thought if it all before.

With viruses, for it to spread it has to delay the time it activates so that it can spread first. Unless it can email itself to spread.

[ja5983]

you know, this reminds me of a story a DirecTV employee once told me. Well apparently the hacked cards were going out of control. DirecTV had the ability to update the cards via their system and used this method to destroy the cards regularly...not that big a deal....heres the virus though. Over a year the DTV satellites would send random pieces of code that were meaningless to the cards. The cards would store this code, after a year, the code was updated with their equivalent of an executable and executed. What this program did was rewrite all the access software of the system with a new access "operating system" making reflashing the cards and using the previous DTV hacks impossible. When the data on the cards was analyzed, it was found that the last line of code was "GAME OVER." If anyone has something to add to this please do, but you can research it on the net for more.

more of an interesting story than anything, but i was basically just saying that spacefrogs idea is not THAT far from the truth and has virtually been done before.

[ja5983]

sorry here is the FULL story from slashdotorg

One of the original smart cards, entitled 'H' cards for Hughes, had design flaws which were discovered by the hacking community. These flaws enabled the extremely bright hacking community to reverse engineer their design, and to create smart card writers. The writers enabled the hackers to read and write to the smart card, and allowed them to change their subscription model to receive all the channels. Since the technology of satellite television is broadcast only, meaning you cannot send information TO the satellite, the system requires a phone line to communicate with DirecTV. The hackers could re-write their smart cards and receive all the channels, and unplug their phone lines leaving no way for DirecTV to track the abuse. DirecTV had built a mechanism into their system that allowed the updating of these smart cards through the satellite stream. Every receiver was designed to 'apply' these updates when it received them to the cards. DirecTV applied updates that looked for hacked cards, and then attempted to destroy the cards by writing updates that disabled them. The hacking community replied with yet another piece of hardware, an 'unlooper,' that repaired the damage. The hacker community then designed software that trojanized the card, and removed the capability of the receivers to update the card. DirecTV could only send updates to the cards, and then require the updates be present in order to receive video. Each month or so, DirecTV would send an update. 10 or 15 minutes later, the hacking community would update the software to work around the latest fixes. This was the status quo for almost two years. 'H' cards regularly sold on eBay for over $400.00. It was apparent that DirecTV had lost this battle, relegating DirecTV to hunting down Web sites that discussed their product and using their legal team to sue and intimidate them into submission.

"Four months ago, however, DirecTV began sending several updates at a time, breaking their pattern. While the hacking community was able to bypass these batches, they did not understand the reasoning behind them. Never before had DirecTV sent 4 and 5 updates at a time, yet alone send these batches every week. Many postulated they were simply trying to annoy the community into submission. The updates contained useless pieces of computer code that were then required to be present on the card in order to receive the transmission. The hacking community accommodated this in their software, applying these updates in their hacking software. Not until the final batch of updates were sent through the stream did the hacking community understand DirecTV. Like a final piece of a puzzle allowing the entire picture, the final updates made all the useless bits of computer code join into a dynamic program, existing on the card itself. This dynamic program changed the entire way the older technology worked. In a masterful, planned, and orchestrated manner, DirecTV had updated the old and ailing technology. The hacking community responded, but cautiously, understanding that this new ability for DirecTV to apply more advanced logic in the receiver was a dangerous new weapon. It was still possible to bypass the protections and receive the programming, but DirecTV had not pulled the trigger of this new weapon.

"Last Sunday night, at 8:30 pm est, DirecTV fired their new gun. One week before the Super Bowl, DirecTV launched a series of attacks against the hackers of their product. DirecTV sent programmatic code in the stream, using their new dynamic code ally, that hunted down hacked smart cards and destroyed them. The IRC DirecTV channels overflowed with thousands of people who had lost the ability to watch their stolen TV. The hacking community by and large lost not only their ability to watch TV, but the cards themselves were likely permanently destroyed. Some estimate that in one evening, 100,000 smart cards were destroyed, removing 98% of the hacking communities' ability to steal their signal. To add a little pizzazz to the operation, DirecTV personally "signed" the anti-hacker attack. The first 8 computer bytes of all hacked cards were rewritten to read "GAME OVER".

[eXess]

So here I am, not connected to anything but my XBOX via Ethernet Crossover Cable. Using nothing but FTP when I get a Norton Antivirus warning for BD_BugBear. Says that the IP Address of my XBOX is attempting an exploit of this virus, and it is blocked on a specific port.

Thinking that the virus must actually exist on my laptop, I do a full scan in safe mode. Finding nothing, I download the Bugbear removal tool from Symantec. Still, nothing is found.

Could it be that the virus exists on my XBOX? I have loaded numerous applications on the modded XBOX. Perhaps one contained a virus? Why else would it look like the attack was coming from my XBOX IP Address? If it originated on the PC, wouldn't it say it was coming from 127.0.0.1, or the IP address of my laptop ... ? Why would it mention the IP of the XBOX?

I must have a virus on the XBOX!? And there is no removal tool...............

Any ideas??

[exiva]

i highly doubt there is a xbox virus. Norton (the pile of shit it is) may not know what its talking about and is probably a false alarm. Like the shirt says "Not even norton can protect you"