Help - Search - Members - Calendar
Full Version: Microsoft: Stealth Rootkits Are Bombarding Xp Sp2 Boxes
BleepingComputer.com > Security > Breaking Virus & Security News
   
quietman7
Dec 6 2005, 10:39 AM
QUOTE
Microsoft: Stealth Rootkits Are Bombarding XP SP2 Boxes
By Ryan Naraine
December 6, 2005

More than 20 percent of all malware removed from Windows XP SP2 (Service Pack 2) systems are stealth rootkits, according to senior official in Microsoft Corp.'s security unit.

Jason Garms, architect and group program manager in Microsoft's Anti-Malware Technology Team, said the open-source FU rootkit ranks high on the list of malicious software programs...the WinNT/Ispro family of kernel mode rootkits features in the top-five list every month. WinNT/Ispro, like FU, is often bundled with illegally installed spyware to allow an attacker to modify certain files and registry keys to avoid detection on an infected machine...Garms...warned that the high rate of rootkit infections confirm fears that virus writers are using the most sophisticated techniques to hide malicious programs.

security.ithub.com
BanditFlyer
Dec 6 2005, 12:08 PM
Thanks Quietman,

I really appreciate these updates. It was a great idea to have a "Security News" type forum on BC.

BanditFlyer
rms4evr
Dec 6 2005, 12:11 PM
QUOTE(quietman7 @ Dec 6 2005, 10:39 AM) *
QUOTE
Microsoft: Stealth Rootkits Are Bombarding XP SP2 Boxes
By Ryan Naraine
December 6, 2005

More than 20 percent of all malware removed from Windows XP SP2 (Service Pack 2) systems are stealth rootkits, according to senior official in Microsoft Corp.'s security unit.

Jason Garms, architect and group program manager in Microsoft's Anti-Malware Technology Team, said the open-source FU rootkit ranks high on the list of malicious software programs...the WinNT/Ispro family of kernel mode rootkits features in the top-five list every month. WinNT/Ispro, like FU, is often bundled with illegally installed spyware to allow an attacker to modify certain files and registry keys to avoid detection on an infected machine...Garms...warned that the high rate of rootkit infections confirm fears that virus writers are using the most sophisticated techniques to hide malicious programs.

security.ithub.com


And people wonder why I am scared to install Service Pack 2 sad.gif . It seems like every time a security hole is patched, another one pops up.

Sometimes I wish I had a Mac. They are not perfect, but they are a lot more secure than Windows machines.

Thanks for the info, quietman7 smile.gif .
quietman7
Dec 6 2005, 12:24 PM
rms4evr regardless of this it is still recommended to keep Windows and Internet Explorer current with the latest critical security updates from Microsoft including SP2 which has enhanced security features. This will patch many of the previous security holes through which attackers can gain access to your computer and future ones as new patches are released from Microsoft.

Read "Simple and easy ways to keep your computer safe" and follow the recommended tips.
Datababe
Dec 6 2005, 12:47 PM
This is why I do have Macs. I also have a couple of laptops running Windows, but they are not allowed to wander much on the 'net. I know how to keep a Windows box safe, but at home I'd rather not have to fight that battle. ;-)
This is a "lo-fi" version of our main content. To view the full version with more information, formatting and images, please click here.
Invision Power Board © 2001-2008 Invision Power Services, Inc.