0x0A0D Posted December 2, 2021 ID:1490903 Share Posted December 2, 2021 MWB dropped the main binary for the Xilinx Vividao FPGA/SoC design suite as ransomware today. Happened right as I was about to demo an FPGA project during an online meeting. That's about the worst time it could've happened... FP_Vivado_2021.2.txt Link to post Share on other sites More sharing options...
Staff cli Posted December 2, 2021 Staff ID:1490906 Share Posted December 2, 2021 Sorry to hear that. I've whitelisted the file so it shouldn't happen again for that program. As a precaution, you can add the program your allow list. We suggest this to developers in order to avoid having their projects detected by our Machine Learning engine. You can read more in MachineLearning/Anomalous Detections and Explanation. Thanks for reporting. Link to post Share on other sites More sharing options...
0x0A0D Posted December 2, 2021 Author ID:1490909 Share Posted December 2, 2021 I've for a path rule Xilinx apps on all my dev systems now, but there's other systems I don't manage that are probably at risk for being hit in the same way. One one hand I get that allow-listing on software dev systems generally makes things easier for developers with regards to FPs & performance hits, but I'm really not a fan of the soft target it can create if an attacker pivots through other lines of defense. Link to post Share on other sites More sharing options...
Recommended Posts
Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
Register a new accountSign in
Already have an account? Sign in here.
Sign In Now