Peaches Posted November 11, 2009 Report Share Posted November 11, 2009 10 November 2009, 18:34Lost+Found: root kit protection, Koobface, Windows 7, Gumblar HookSafe is intended to make things difficult for rootkits by protecting kernel hooks from manipulation. It relocates the kernel hooks to a central memory space which it then monitors. In order to ensure that it does not itself fall victim to a rootkit, HookSafe runs as a hypervisor, with the protected system running as a guest. Experiments at North Caronlina State University found that HookSafe was able to protect against nine known rootkits. According to Trend Micro, the authors of Koobface are using hacked Google Reader accounts to spread links to their malware. The infected pages are shared using the "Share" or "Share with note" functions. More on this topic at Heise security - http://www.h-online....lar-855712.html Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.