Aaron Toponce has come up with an interesting attack on computers called the The Evil Maid Attack. It requires physical access to the machine for a few minutes. Aaron claims it is effective against any operating system. I'm skeptical on that, but will assume he is correct.
In any case, Aaron emphasizes what has been my long term policy with regard to laptops: never let the thing out of your possession. Never! Shut it down when you aren't using it. Suspension and hibernation are not acceptable. Any questions?
With the PATRIOT ACT and other legislation legalizing sneak and peek attacks, do not assume that your home machines are immune from this attack either.
Mossad hacked Syrian laptop to steal nuke plant secrets
Evil Maid attack led to air raid
Posted in Spyware, 6th November 2009 16:38 GMT
Mossad reportedly used a Trojan to hack into a Syrian official's laptop while he stayed in a London hotel.
The information extracted was used to plan a bombing raid at a suspected nuclear reactor facility in Syria, Israeli newspaper Haaretz reports.
http://www.theregister.co.uk/2009/11/06/mossad_syria_trojan_hack/
OK, not everyone who reads this blog is a Syrian official, but still...