English
The Internet threat alert status is currently normal. At present, no major epidemics or other serious incidents have been recorded by Kaspersky Lab’s monitoring service. Internet threat level: 1

Jun 19 2012

XPAJ: Reversing a Windows x64 Bootkit

The number of bootkits is steadily growing.

Dec 01 2011

Legit bootkits

Various proactive antivirus protection tools are capable of hooking system functions in one way or another. Malicious code also uses algorithms of this type.

Sep 28 2011

MYBIOS. Is BIOS infection a reality?

The fact that BIOS can theoretically be infected has been known for some time.

Jan 25 2011

TDSS. TDL-4

A new variant of the rootkit, TDL-4, which can infect both 32-bit and 64-bit operating systems, appeared sometime between July and August, 2010.

Aug 05 2010

TDSS

The TDSS rootkit first appeared in 2008. Since then, it has become far more widespread than the notorious rootkit Rustock. The rootkit’s malicious payload and the difficulties it presents for analysis are effectively similar to those of the bootkit.

Jun 09 2009

Bootkit 2009

In 2008, we wrote about Backdoor.Win32.Sinowal , a malicious program we believed to pose a serious threat, as it employed the most advanced, at the time, virus technologies.