I remember back in high-school (long, long ago,) one of my teachers was attempting to show off the school's new-fangled-lightning-fast T1 line. So he brought up whitehouse.com, not realizing that he had made a horrid mistake.
Unfortunately, that was the first exposure to porn some of my classmates had encountered. It was a sad day for them, realizing there is porn on the internet.
Ironically, I missed school for the next four days.
Iran's SCADA system was attacked and it had a huge air gap.
Basically, the -ONLY- way to keep a computer safe is to...not have a computer. If someone wants in a system bad enough, there is always an attack vector. Be it online or via the best malware carrier of all time -- humans.
I am willing to bet some joe-blow intern infected the network with someone doing some amazingly easy social engineering to him/her.
TL;DR - Internet or not; if someone wants in, they'll get in if two situations are met: 1) The computer is on, 2) People are allowed around the computer.
You sir, owe me one can of mountain dew, a new corsair keyboard and 4 acer 24" monitors.
Thank you for that. I laughed. Hard.
I'm all for a physical switch.
Most of my customers would not be, however.
Then again, I see writing to the partition table / boot sector as on the same level as flashing firmware; it should only be done when absolutely needed and by someone who knows what they're doing and quite qualified. Which would put me rooting for a physical switch even more (I'd have less customers, though).
But the question still begs: Why are we allowed to write to this stuff from userland? Even with admin / root privs?
Or, you know, disable the ability to write to the boot sector / partition table without specialized permission.
One time toggle in the bios means you can write to partition table on next boot. Want to write to it again? Toggle it in bios again.
Also, why can we write to the partition table and bootsector from userland again?
You can already have Froyo on your capitvate; I'm currently running it now.
Look at the cognition or perception roms from XDA-developers.
Promising costs nothing, it's the delivering that kills you.