Two prominent Web sites that specialize in remote access software known as “rootkits” have been taken offline by a large distributed denial of service (DDOS) attack. The take-down was allegedly ...

The Chinese-linked group Mustang Panda used a kernel-level rootkit to deploy undetectable TONESHELL malware, targeting ...

Detections of attack attempts using rootkits against business targets in the United Arab Emirates (UAE) have significantly increased in 2023, with 2.6 times more of these types of attacks so far this ...

Mustang Panda deployed TONESHELL via a signed kernel-mode rootkit, targeting Asian government networks and evading security ...

In the 64-bit version of Windows Vista, all kernel-mode drivers must be digitally signed, a change from earlier Windows, which encouraged signed drivers but didn't require them. This summer, Rutkowska ...

The China-linked Mustang Panda APT has been using a kernel-mode rootkit in attacks leading to ToneShell backdoor deployments.

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.

Move over, Stuxnet: researchers have discovered a way to silently manipulate the programmable logic controller (PLC) systems that control water, power, and other industrial processes without getting ...

On July 26, McAfee will begin offering a new application called Rootkit Detective, designed to detect and remove dangerous rootkit attacks. The software will also help end users ward off the threats, ...

Rootkits do not signal impending doom for corporate IT, but companies need to keep up their defenses as the malware tools begin to spread, experts say. The best way to deal with rootkits is to prevent ...

When combined with Web threats, the new rootkit is proving to be both a destructive and prolific combination, security experts say. The rootkit models a similar virus from several years ago but with ...