Search Perform an advanced search query SOFTPEDIA
 
SOFTPEDIA
Updated one minute ago
HomeSubmit a program for being reviewedAdvertise on our websiteGet help on surfing our websitesSend us your feedbackGet information about our XML/RSS backend and how to use itBrowse the news archiveVisit our discussion forumVizitati forumul in limba romana



KLIP
  1. HOME
  2. SCIENCE
  3. TECHNOLOGY
  4. WEBMASTER
  5. SECURITY
  6. MICROSOFT
  7. LINUX
  8. APPLE
  9. GAMES
  10. TELECOMS
  11. REVIEWS
  12. LIFE & STYLE
  13. EDITORIALS
  14. INTERVIEWS
  15. RSS
Welcome!
Hello, Guest

Login if you have a Softpedia.com account.

Otherwise, register for one.

SECURITY

New Rootkit Tricks the Operating System, Sits in Computer's Memory

- A new type of rootkit in the labs

By: Bogdan Popa, Security and Search Engines Editor

TechWorld reported today that a new type of malware that could be impossible to detect by the anti-virus technologies currently on the market has been developed by security researchers
and will be demonstrated at the Black Hat security event scheduled for August in Las Vegas. The same source adds that the new rootkit could prove to be incredibly hard to detect first of all due to the fact that it stays in a "protected part of the computer memory".

The rootkit is named System Manager Mode (SMM) and could allow a potential attack to track the whole computer activity. The worst thing about it is that due to the fact that it is installed in a protected sector of the memory, the rootkit is entirely invisible to the operating system, which makes the detection and the removal quite impossible with the technologies currently existent on the market. SMM was developed by two security engineers, Shawn Embleton and Sherri Sparks, from Clear Hat Consulting, who also created similar rootkits a few years ago.

Rootkits have always been used by attackers as simple methods to break into the vulnerable systems and remain anonymous while conducting illegal activities but today's anti-virus solutions provide protection for a large number of rootkits. However, in case a rootkit manages to deploy its files into the computer memory, the anti-virus protection becomes quite useless and affected users must turn to other technologies in order to clean the computer, a method that usually requires advanced computer skills and knowledge.

"Rootkits are going more and more toward the hardware. The deeper into the system you go, the more power you have and the harder it is to detect you", Sherri Sparks of Clear Hat Consulting, the security company that built the rootkit, told TechWorld.


MORE RELATED ARTICLES: Avast Antivirus Updated, Download Included Srizbi Accounts for Half of All Spam AVG Antivirus Free 8.0 Expected Tomorrow! The Release Candidate of Ubuntu 8.04 LTS Is Here Meet Srizbi, the Largest Botnet Ever Microsoft Plans to Add Rootkit Detection to Windows Live OneCare
 
Comments | Link here | Subscribe
Print | Send to friend
Today's News | Yesterday's News

Search:

TAGS: rootkit security anti-virus

14th May 2008, 06:41 GMT | Copyright (c) 2008 Softpedia | Contact:
Read by 682 user(s) | Rating: | 6 vote(s) so far | Cast your vote:
New Rootkit Tricks the Operating System, Sits in Computer's Memory - USER OPINIONS




We are sorry, there are no opinions available for this article.


SHARE YOUR OPINION ABOUT New Rootkit Tricks the Operating System, Sits in Computer's Memory

Since you are not logged on, your comments will have to be approved before being displayed.
Click here to login, or register.
Your Name:
Your Email:
Type in the result:
Your Opinion:
 


DO YOU WANT TO CONTACT US?  

If you have some comments or you want to send us some information you can send us an email directly to .
You can use the form below for the same purpose.
Your full name: (at least 3 characters)
Your email address: (at least 5 characters)
Message subject: (at least 5 characters)
Message text:
(at least 10 characters)
Type in the result:
 
 
© 2001 - 2008 Softpedia. All rights reserved.
Softpedia™ and Softpedia™ logo are registered trademarks of SoftNews NET SRL.
Copyright Information | Privacy Policy | Terms of Use | Contact Softpedia | Update your software | Archive