"virus in your flash" has been possible for a long time. But it is hardly
worth the effort. If you're into a machine and able to much with flash,
then you will get far more mileage by infecting every file you can than by
blasting flash. The main goal of most of this stuff is to propagate.
Outlook is a far more useful way to ensure propagation than FLASH.
Nevertheless I'm convinced we'll see ACPI BIOS viruses pretty soon now.
Then people will suddenly realize there's a problem.
Not to even mention what's doable with EFI ...
The security architecture of the machines we use .... well, doesn't exist.
ron
