[ news_security_news ]
Master Boot Records Endangered Again
David Utter
Staff Writer
2008-01-22
 Security News RSS Feed
New rootkits have a familiar target - the master boot record, where they can hide from detection and removal.
The blog entry by security vendor MX Logic about MBR targeting reminded me of tangling with one of these pests several years ago. MBR infections were a pain to remove.
A new generation of security pros may get to enjoy the challenge associated with MBR rootkits. MX Logic said criminals have taken this backwards step to make their wares harder to find and remove. For those who aren't painfully familiar with the MBR, here's what MX Logic had to say about it:
Rootkits that attach to your MBR do so BEFORE the operating system loads. This means that these rootkits are a lot stealthier and as such more difficult to detect, but also much more difficult to remove.
Even if you uninstall your operating system, MBR rootkits will still remain on your system, even if the malware which installed the rootkit is removed.
My memorable experience with an MBR attack happened because someone stuck an infected floppy into the PC. These days, portable USB drives could probably carry the same malware. Those who use thumb drives regularly should scan them for viruses before plugging them into other computers.
View All Articles by David Utter
About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.
More news_security_news Articles
Security News RSS Feed
|
|
