Kaspersky Lab,announces the detection of multi-purpose rootkits capable of posing a threat to both 32 and 64-bit Windows systems. The key feature of the 64-bit rootkit is that it does not try to bypass the PatchGuard kernel protection system, but uses a special digital signature for software developers instead. The rootkit is distributed via a downloader, which also tries to install other malicious software. Kaspersky Lab's experts found one variant which attempts to download and install so-called Rogue or Fake antivirus software for the Mac OS X operating system, along with other malware. Although this malware would obviously not work in a Windows environment, it indicates the cybercriminals' growing interest in alternative software platforms.Rootkits are malicious programs that usually exist in the form of drivers and can run at the kernel level of an operating system and load when the system boots. This makes rootkits difficult to detect using
standard protection tools. The rootkits in question are propagated via a downloader, which uses a pack of exploits called "BlackHole Exploit Kit". Typically, users' computers are infected by visiting websites containing the downloader.
More here:http://www1.albawaba.com/kaspersky-lab-exposes-dangerous-rootkit-targeting-64bit-windows-systems-376808?
[Non-text portions of this message have been removed]
anybody else use it, and get a new one every six months.
** IF YOU ARE READING THIS POST ON A BLOG SITE, IT IS BREAKING INTERNATIONAL COPYRIGHT LAWS. CONSIDER THIS POST STOLEN **
0 comments:
Post a Comment
Note: Only a member of this blog may post a comment.