[funsec] Microsoft: Rootkits and Blaster

Fergie fergdawg at netzero.net
Tue Dec 6 12:01:04 CST 2005


I think they're just talking about 20% of 'malware' detected
and cleaned with the Microsoft Malware Removal Tool.

- ferg

-- "Hubbard, Dan" <dhubbard at websense.com> wrote:

Hmm, this stat seem way off to me. Either that or a) they don't have
detection / removal for mass mailing worms and BOT's or b) the
definition of "rootkit" is very broad.

-----Original Message-----
From: funsec-bounces at linuxbox.org [mailto:funsec-bounces at linuxbox.org]
On Behalf Of Fergie
Sent: Tuesday, December 06, 2005 8:21 AM
To: funsec at linuxbox.org
Subject: [funsec] Microsoft: Rootkits and Blaster

Here are a couple of interesting snippets, both via eWeek.

First: "Microsoft: Stealth Rootkits Are Bombarding XP SP2 Boxes"


More than 20 percent of all malware removed from Windows XP SP2 (Service
Pack 2) systems are stealth rootkits, according to senior official in
Microsoft Corp.'s security unit.

Jason Garms, architect and group program manager in Microsoft's
Anti-Malware Technology Team, said the open-source FU rootkit ranks high
on the list of malicious software programs deleted by the free Windows
worm zapping utility.




More information about the funsec mailing list