Articles about rootkit

businessman shrugging - illustration via shutterstock

Microsoft PatchGuard flaw could let hackers plant rootkits on x64 Windows 10 boxen

Flaws in Microsoft PatchGuard create a means for hackers to plant rootkits on Windows 10, 64-bit OS devices. The newly discovered attack technique, dubbed GhostHook, allows attackers to completely bypass PatchGuard, security researchers at CyberArk Labs warn. PatchGuard (formally known as Kernel Patch Protection) was …
John Leyden, 22 Jun 2017
Man in an orange jumpsuit clutches prison bars. Image by Shutterstock

FBI secures guilty plea from Russian bot-herder

A Russian citizen behind “tens of thousands” of Ebury trojan infections has entered a guilty plea in the US and will face sentencing in August. The US Department of Justice indicted Maxim Senakh, now 41, in January 2015. Ebury was a trojan carrying an SSH rootkit and putting backdoors into its targets, which were Linux, …

Double KO! Capcom's Street Fighter V installs hidden rootkit on PCs

A fresh update for Capcom's Street Fighter V for PCs includes a knock-out move: a secret rootkit that gives any installed application kernel-level privileges. This means any malicious software on the system can poke a dodgy driver installed by SFV to completely take over the Windows machine. Capcom claims it uses the driver to …
Chris Williams, 23 Sep 2016

Feds widen probe into lottery IT boss who rooted game for profit

Federal investigators in the US are widening a probe into fraud by the former IT security director of the Multi-State Lottery Association (MSLA). In July, Eddie Tipton, 52, was found guilty of installing a rootkit in the MSLA's random-number generating computer that allowed him to predict the digits for future winning tickets …
Iain Thomson, 24 Dec 2015

CAUGHT: Lenovo crams unremovable crapware into Windows laptops – by hiding it in the BIOS

Analysis Lenovo has sold laptops bundled with unremovable software that features a bonus exploitable security vulnerability. If the crapware is deleted, or the hard drive wiped and Windows reinstalled from scratch, the laptop's firmware will quietly and automatically reinstall Lenovo's software on the next boot-up. Built into the …
Chris Williams, 12 Aug 2015
lottery

Lottery IT security boss guilty of hacking lotto computer to win $14.3m

Iowa state lottery's IT security boss hacked his employer's computer system, and rigged the lottery so he could buy a winning ticket in a subsequent draw. On Tuesday, at the Polk County Courthouse in Des Moines, Iowa, the disgraced director of information security was found guilty of fraud. Eddie Tipton, 52, installed a …
Iain Thomson, 22 Jul 2015
Asus Z97-A UEFI BIOS

Hacking Team spyware rootkit: Even a new HARD DRIVE wouldn't get rid of it

‪Hacking Team RCS spyware came pre-loaded with an UEFI (‬Unified Extensible Firmware Interface) ‪BIOS rootkit to hide itself on infected systems, it has emerged following the recent hacking of the controversial surveillance firm.‬ The stealth infection tactic, which has been revealed through leaked emails arising from last …
John Leyden, 14 Jul 2015

Infosec bods demo GPU keylogger. Don't tell the NS... oh, wait

Security researchers have demonstrated how malicious code can be run on graphics processors (GPUs) rather than the central processing unit (CPUs) at the heart of a computer. Team Jellyfish's Demon keylogger proof-of-concept code operates in a blind spot that conventional security software is simply not designed to inspect. …
John Leyden, 13 May 2015
Micro SIM Card

SMS pwnage on MEELLIONS of flawed SIM cards, popular 4G modems

A Russian research team has found vulnerabilities in millions of the world's SIM cards, and separate flaws in common 4G modem platforms. Together, the bugs could allow attackers to send crafted SMS text messages to gain access to critical systems and install malware on connected computers. In one dramatic and hypothetical …
Darren Pauli, 19 Nov 2014

Bank-raid ZeuS malware waltzes around web with 'valid app signature'

A variant of the bank-account-raiding ZeuS Trojan is masquerading as a legit Windows app using a valid digital signature – and packs a rootkit to burrow deep into victims' PCs. It appears miscreants have somehow gained access to the private signing key belonging to a Microsoft-registered third-party developer in Switzerland, …
John Leyden, 5 Apr 2014

Devs angrily dismiss Absolute Computrace rootkit accusation

Developers have denied accusations that their Computrace anti-theft software poses a remote wipe risk for the computers the program is designed to protect. However security researchers at Kaspersky Lab are standing by their warning that Absolute Software's Computrace anti-theft technology poses a hidden threat that might be …
John Leyden, 17 Feb 2014

McAfee dumps signatures and proclaims an (almost) end to botnets

RSA 2013 Signature-based malware identification has been around since the dawn of the computer security industry, but McAfee has said it's dumping the system – or rather, adapting it – in an upgraded security suite which will (it claims) virtually eliminate susceptibility to botnets. McAfee's malware signature database has grown to …
Iain Thomson, 26 Feb 2013
The Register breaking news

Evildoers can now turn all sites on a Linux server into silent hell-pits

An advanced Linux malware strain can automatically hijack websites hosted on compromised servers to attack web surfers with drive-by-downloads. The software nasty targets machines running 64-bit GNU/Linux and a web server, and acts like a rootkit by hiding itself from administrators. A browser fetching a website served by the …
John Leyden, 21 Nov 2012
The Register breaking news

New vicious UEFI bootkit vuln found for Windows 8

Security researchers have discovered security shortcomings in Windows 8 that create a means to infect the upcoming operating system with rootkit-style malware. Italian security consultants ITSEC discovered the security hole following an analysis of the Unified Extensible Firmware Interface (UEFI), a successor to the legacy …
John Leyden, 19 Sep 2012
The Register breaking news

Ubisoft assassinates Uplay flaw, denies DRM rootkit

A bit of holiday fun for Google security researcher Travis Ormandy left Ubisoft scrambling to fix a gaping flaw in its Uplay gaming application on Monday morning. "While on vacation recently I bought a video game called 'Assassin's Creed Revelations,' he posted on the Full Disclosure mailing list. "I noticed the installation …
Iain Thomson, 30 Jul 2012
The Register breaking news

Security boffins brew devilish Android rootkit

Computer scientists have identified a weakness in the Android mobile operating system that allows users to be tricked into silently installing hidden malware. A research team led by Xuxian Jiang at North Carolina State University discovered that they could redirect a fandroid's touchscreen taps - a technique known as …
John Leyden, 4 Jul 2012
The Register breaking news

Software maker sorry for trying to silence security researcher

A Silicon Valley software maker has withdrawn legal threats against an Android developer who claimed the company's diagnostic application amounted to a rootkit that posed a privacy threat to millions of handset owners. In a statement issued on Wednesday, Mountain View, California-based Carrier IQ apologized to Trevor Eckhart …
Dan Goodin, 24 Nov 2011
The Register breaking news

World's stealthiest rootkit gets a makeover

One of the world's more advanced pieces of malware has just gotten a makeover that could make it even more resistant to takedown efforts, security researchers said. An analysis of recent updates to the TDL4 rootkit, which is also known as TDSS and Alureon, shows that components including its kernel-mode driver and user-mode …
Dan Goodin, 21 Oct 2011

Create a news alert about rootkit, or find more stories about rootkit.

Biting the hand that feeds IT © 1998–2017