Cross-platform Trojan controls Windows and Mac machines

Discussion in 'malware problems & news' started by TheKid7, Jul 30, 2012.

Thread Status:
Not open for further replies.
  1. TheKid7

    TheKid7 Registered Member

    Joined:
    Jul 22, 2006
    Posts:
    3,469
    Cross-platform Trojan controls Windows and Mac machines
    http://news.drweb.com/?i=2604&c=5&lng=en&p=0
     
  2. First of all I notice it spreads through a Java applet with an invalid digital certificate. Yawn.

    Moving on, it's interesting that it includes rootkit drivers for both Windows and OSX. We'll be seeing more of that, I think. Maybe on Linux too, though with all the kernel versions in use a rootkit's operation couldn't be guaranteed.

    However, the nice folks at DrWeb left out some important information, namely how it elevates from limited user to a position where it can load those drivers. You can't load kernel drivers as a limited user. So what's this trojan doing?
     
Loading...
Thread Status:
Not open for further replies.