Linked by Thom Holwerda on Sat 11th Mar 2006 21:24 UTC
Lab rats at Microsoft Research and the University of Michigan have teamed up to create prototypes for virtual machine-based rootkits that significantly push the envelope for hiding malware and that can maintain control of a target operating system. The proof-of-concept rootkit, called SubVirt, exploits known security flaws and drops a VMM (virtual machine monitor) underneath a Windows or Linux installation. Once the target operating system is hoisted into a virtual machine, the rootkit becomes impossible to detect because its state cannot be accessed by security software running in the target system.
Thread beginning with comment 103978
To read all comments associated with this story, please click here.
To read all comments associated with this story, please click here.
Recent Original Stories
Recent Comments
Headlines
Random Comments
Random Stories
Random OS Link
Member since:
2006-03-13
Call me crazy, but before my website was discovered, I posted a poorly formated CD-ROM image by accident which nobody downloaded. I was trying to implement a compatible ISO9660 format on my operating system (LoseThos). Anyway, the thing made Windows act really freaky and confused--it was pretty funny, really. Nothing is called a bug any more, just a virus. About the time I did this, a story of a "root kit" and some kind of Sony hack appeared. I'm paranoid all this is an effort to make Windows the only allowed operating system at a BIOS or hardware level. This security paranoia has me terrified that hardware is going to require insider information only given to Microsoft and big companies-- like hard drives that have encryption with only Microsoft granted a key. Too me, all this security paranouia seems like Microsoft trying to put a nail in the coffin forever sealing their monopoly. Did you know they keep secret the ATAPI codes for writing to a CD-ROM?