F-Secure: One more Bot trying to hide under Sony DRM
I hate to say "I told you so" but I knew that the flaws in the previous malware efforts would be quickly corrected and re-seeded in the wild.
Katrin writes over on the F-Secure "News from the Lab" Blog:
Soon after the first Bot using Sony rootkit technology was found another one appeared - Breplibot.C.
This new variant fixes some bugs found in the previous Breplibot.B variant. It uses file '$sys$xp.exe' instead of '$sys$drv.exe' when copy to Windows System folder.
posted by Fergie @ 11/10/2005 04:52:00 PM
0 Comments:
Post a Comment
<< Home