Posts Tagged ‘kernel driver’

Backdoor.Hikit: New Advanced Persistent Threat

Aug

2012

Thanks to Peter Coogan for his assistance with this research.Earlier this week Mandiant released a blog which talked about a new advanced persistent threat (APT) they found while investigating a potential compromise. Symantec detects the APT in question as Backdoor.Hikit, a Trojan that enables an attacker to gain control of compromised servers from a remote […]

Category General Written by Symantec Security Response Blog 0 Comments

Back to Stuxnet: the missing link

Jun

2012

Two weeks ago, when we announced the discovery of the Flame malware we said that we saw no strong similarity between its code and programming style with that of the Tilded platform which Stuxnet and Duqu are based on. Flame and Tilded are completely different projects based on different architectures and each with their own […]

Category General Written by Securelist / Blog 0 Comments

Darkmegi: This Is Not the Rootkit You’re Looking For

Apr

2012

Darkmegi was in the news a couple of months back; it was the first known threat to be delivered through the Microsoft vulnerability CVE-2012-0003 (MIDI Remote Code Execution Vulnerability) exploitation. More recently Darkmegi has been seen in CVE-2011-3544 (Java Runtime Remote Code Execution) drive-by attacks as part of the Gong Da Pack exploit kit. Darkmegi uses […]

Category General Written by Blog Central > McAfee Labs 0 Comments

The Latest in IT Security

Posts Tagged ‘kernel driver’

Backdoor.Hikit: New Advanced Persistent Threat

Back to Stuxnet: the missing link

Darkmegi: This Is Not the Rootkit You’re Looking For

Categories

Featured

Archives

Latest Comments

About Us

Contact Us