techtimes

Microsoft Confirms Rootkit Malware to Be Allowed on Windows After Signing It Off, Is it Gone Now?

Microsoft has confirmed that it has signed off on the recently discovered "rootkit malware" found on the Windows platform, which is believed to be a potential point of access for threat actors. The ...
Threat Post

Microsoft Signs Malware That Spreads Through Gaming

The driver, called “Netfilter,” is a rootkit that talks to Chinese C2 IPs and aims to spoof gamers’ geo-locations to cheat the system and play from anywhere, Microsoft said. Microsoft signed a driver ...

Chinese state hackers use rootkit to hide ToneShell malware activity

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.
Computerworld

Gameover malware is tougher to kill with new rootkit component

A new variant of the Gameover malware that steals online banking credentials comes with a kernel-level rootkit that makes it significantly harder to remove, according to security researchers from ...
Dark Reading

Meet Scranos: New Rootkit-Based Malware Gains Confidence

A new rootkit-based malware family known as "Scranos" is being used in global cyberattacks as its authors grow their potential target base while adding new components and fixing bugs. The ...
Digital Trends

‘LoJax’ rootkit malware can infect UEFI, a core computer interface

Modern computers utilize what is known as a Unified Extensible Firmware Interface (UEFI) to get up and running. When you press the power button on your Mac or PC, the UEFI begins communicating with ...