Network Security News

Rootkit may spark sophisticated network security

Monday, March 30, 2009

Security researchers have created a rootkit that could prove to be more malicious than its predecessors thanks to its ability of surviving after a machine reboots and avoiding detection from anti virus software.

After the rootkit is injected into a commercial BIOS firmwire using a Phython-based tool, cybercriminals could be given complete control of the compromised machine, DarkReading.com reports. This makes the rootkit "more dangerous" because its technology allows it to use the BIOS-located network to attack other machines "as well as using normal exploits without any access to the disk or memory in the operation system."

The researchers expanded on previous rootkits with a generic implementation that can work with different operating systems, according to the article. Through this updated element, they were able to attack OpenBSD and Windows machines with the BIOS code injection.

Existing network security safeguards may have difficulty clearing this particular rootkit from machines, researchers said. It runs without a hard disk and also may allow the cybercriminal to deactivate anti virus software in the process.

The researchers suggested that organizations and SMBs interested in combating this rootkit to prevent the flashing of the BIOS by enabling write-protection on the motherboard.ADNFCR-1765-ID-19098356-ADNFCR

Related News:

Zeus botnet performs MySpace spam campaign to spread itself further - 11.20.2009
A sophisticated Trojan dubbed "Zeus" has sent a flood of email messages to MySpace users in an attempt to propagate itself onto more computers, according to researchers at the University of Alabama at Birmingham.

Experts dissect Chrome OS security features - 11.20.2009
Yesterday's release of Google's groundbreaking new cloud-based operating system, Chrome OS, has caused a stir in techie circles, with experts of all stripes rushing to examine the product and issue their judgments.

Microsoft counts Chrome coup with discovery of security flaw - 11.20.2009
Security researchers at Microsoft recently discovered a security vulnerability in Google's controversial Chrome Frame for Internet Explorer, a browser plug-in that simulates Chrome functionality within an Internet Explorer session.

iPhone user sues games maker, claiming to have found hidden spyware - 11.18.2009
An iPhone gamer filed a federal lawsuit against mobile game programmer Storm8 today, alleging that the company violated his privacy by including hidden code in its games that gathered his personal information without permission.

Government watchdog warns of possible IT leaks at Los Alamos - 11.16.2009
The Government Accountability Office has issued a report on data security at the Los Alamos National Laboratory which says that sensitive and highly classified information is vulnerable to outside access.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now