Microsoft Warns of Impossible to Clean Spyware
darkjedi521 writes "The Inquirer has a story that the next generation of Windows spyware and exploits are starting to make use of "kernel rootkits". A paper at Microsoft Research has details on a prototype detection tool. Computerworld has more details, as well." From the article: "Newer rootkits can intercept system calls that are passed to the kernel and filter out queries generated by the software. This makes them invisible to administrators and to detection tools..."
A programmer is a machine for converting coffee into code.
There's a very simple SOP for Windows users that will completely eliminate the need for a fix:
1. Buy new PC
2. DO NOT PLUG IN NETWORK CABLE
3. Image drive to external storage wth Ghost or the like
4. Unplug external storage
5. Plug in network cable
6. Connect to Internet. Save any info needed for storage.
7. Unplug network cable
8. Print all info obtained in step 6
9. Plug external storage back in
10. Restore image made in step 3
11. File hardcopies in cabinet
12. Knock back 3 or more shots of your favorite liquor
13. Unplug network cable
14. Return to step 3 for new Internet sessions
What could be simpler?
They are the ones who made it impossible to delete Internet Exploiter after all.
Beep beep.
Well, at least Windows is catching up. We've had rootkits on linux forever! :)
Karma: SELECT `karma` FROM `users` WHERE `userid`=138474;
Boot a clean kernel from removeable, non-writeable media (closed-session CD or write-protected floppy) when doing the rootkit detection. (some details are left to the reader as an exercise)
"[Regarding the 'cloud,'] ownership was what made America different than Russia." -- Woz
Big deal! Linux has had this for like... ever now!
;-)
Oh wait...
Have a Happy.
Why do these people compile and install trojan software? Don't they do a code review before installation?
the preceding comment is my own and in no way reflects the opinion of the Joint Chiefs of Staff
Damn.. now I'm going to have that theme song in my head all day.. :->
When there's something weird,
and it don't look good
Who ya gonna call?
MI-CRO-SOFT??! (Wait..)
I am the maverick of Slashdot
Macs are magic! Don't you read Slashdot?