A new BIOS rootkit spreads in China

2011-10-01

Zhitao Zhou

Microsoft, China

Editor: Helen Martin

Abstract

The BIOS rootkit is the most complex type of rootkit researchers have come across so far. It is hardware dependent, and an attacker must have extensive knowledge of the computer – including software and hardware – in order to create one. Until now this type of rootkit has remained in the realm of academic research – but recently things have changed. Zhitao Zhou details TrojanDropper:Win32/Wador.A.

The full article is available to registered users. Click here for free registration or, if you already are a registered user, login to access the full article.

Magazine


	October 2011 PDF Please register to download the PDF Kindle Please register to download the Kindle PRC Comment Why there’s no one test to rule them all News Figures show importance of patching Drop in vulnerability disclosures Malware prevalence report August 2011 Malware analyses A new BIOS rootkit spreads in China Hard disk woes Asynchronous Harakiri++ Technical feature Okay, so you are a Win32 emulator… Comparative review VB100 Comparative review on Windows 2003 Server R2 Calendar Anti-malware industry events See also Virus Bulletin archives How to become a subscriber Reprints

Quick Links

Poll

Does your company allow you to use a personal laptop/mobile device to access company resources?
Leave a comment
View 2 comments

VB100 certification


	As expected, the annual VB100 test on Windows XP was an epic. A higher than usual pass rate was tempered by numerous stability issues with the products under test, prompting the unveiling of a new stability rating system. John Hawes has all the details. See full results.

Virus Bulletin currently has 225,307 registered users.

Fighting malware and spam

A new BIOS rootkit spreads in China

Zhitao Zhou

PDF

Kindle

Comment

News

Malware prevalence report

Malware analyses

Technical feature

Comparative review

Calendar

See also