TDL4 bootkit reinstates 64-bit infection capability

Status
Not open for further replies.
M

Mark

New Member
Thread author
Apr 22, 2011
149
Microsoft released security update KB2506014 on April 12 to address a vulnerability which allowed unsigned drivers to be loaded by 64-bit Windows. The TDSS/Alureon rootkit family, where TDL4 is a part of, was one of the more advanced rootkits that abused this vulnerability to load the rootkit during Windows boot up. TDL4 is also known as the Google Redirect Virus.
...
Click to expand...
TDL4 bootkit reinstates 64-bit infection capability «
 
M

Mark

New Member
Thread author
Apr 22, 2011
149
TDL4 rootkit is coming back stronger than before

After some months since the last blog post about the TDL rootkit, we have to come back and write again about this nasty threat that is targetting both 32 bit and 64 bit versions of the Windows operating system, succesfully bypassing all the security countermeasures implemented in the 64 bit version of Windows that should prevent the loading of unsigned drivers and every kind of patch to the Windows kernel.
...
Click to expand...
TDL4 rootkit is coming back stronger than before
 
Jack

Jack

Administrator
Verified
Staff Member
Well-known
Jan 24, 2011
9,378
The malware writers will always manage to adapt to the new conditions and security features that Microsoft might implement ..it's hard or better said it's imposible to kill "for good" all the rootkits for the 64bit OS.
The users must take their share of responsibility.....securing your OS and learn how to stay safe is a thing that everyone should learn.
 
Status
Not open for further replies.

Similar threads

Gandalf_The_Grey
    • Like
Nvidia release firmware tool for all 64-bit Windows, fixes DisplayPort black screen, hangs
Replies
0
Views
861
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
T
    • Like
    • Wow
    • +Reputation
New UEFI rootkit Black Lotus offered for sale at $5,000
Replies
2
Views
985
News Archive
plat
P
Gandalf_The_Grey
    • Like
    • +Reputation
Acer fixes UEFI bugs that can be used to disable Secure Boot
Replies
0
Views
652
News Archive
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top