The Chinese-linked group Mustang Panda used a kernel-level rootkit to deploy undetectable TONESHELL malware, targeting ...

A new sample of the ToneShell backdoor, typically seen in Chinese cyberespionage campaigns, has been delivered through a kernel-mode loader in attacks against government organizations.

Microsoft has confirmed that it has signed off on the recently discovered "rootkit malware" found on the Windows platform, which is believed to be a potential point of access for threat actors. The ...

The driver, called “Netfilter,” is a rootkit that talks to Chinese C2 IPs and aims to spoof gamers’ geo-locations to cheat the system and play from anywhere, Microsoft said. Microsoft signed a driver ...

A new rootkit-based malware family known as "Scranos" is being used in global cyberattacks as its authors grow their potential target base while adding new components and fixing bugs. The ...

Security researchers discovered a remote access trojan they named Krasue that is targeting Linux systems of telecommunications companies and managed to remain undetected since 2021. They found that ...

When combined with Web threats, the new rootkit is proving to be both a destructive and prolific combination, security experts say. The rootkit models a similar virus from several years ago but with ...

Home alone after school one day, Tommy scans through the latest blogs and teen Web sites, stopping for a chat or two. Somewhere along the way, the computer’s browser hits a site that instantly and ...

Surveillance software maker Hacking Team has provided its government customers with the ability to infect the low-level firmware found in laptops and other computers that they wanted to spy on. The ...

In the opening quarter of 2006, said McAfee in the first of a trilogy of reports on rootkits, its Avert Labs spotted more rootkit components in worms, Trojan horses, and spyware than in all of 2005.

Security researchers have discovered an unusual new malware that steals user passwords and account payment methods stored in a victim’s browser — and also silently pushes up YouTube subscribers and ...

Microsoft has confirmed that it has signed off on the recently discovered "rootkit malware" found on the Windows platform, which is believed to be a potential point of access for threat actors. The ...