New generation of rootkits now in the wild.

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Some sites are calling this the "invisible" rootkit as it uses Alternate Data Streams (ADS) as one its techiniques of keeping itself hidden. ADS is a way of hiding files from the Windows interface. A file hidden in ADS will not show up in disk usage stats, Windows explorer, or from the cmd prompt. It takes special tools to find them.

You can read the rest of the article on cio.com's CIO Tech Informer

 

Oh man! Ad-blocking software has been detected! :'(

This website is run by the community, for the community... and it needs advertisements in order to keep running. Blocking our ads means your killing our stats!
Please disable your ad-block, or become a premium member to hide all advertisements and this notice.

Interesting Freddy!

For those that might want to read a bit more about NTFS ADS and how easy they are to create and manipulate, there is a good article here...

http://www.windowsecurity.com/articles/Alternate_Data_Streams.html