from the worm-in-the-apple dept.
Iran Contra writes "Security researchers at F-Secure in Finland have discovered a rootkit component in the Bagle worm that loads a kernel-mode driver to hide the processes and registry keys of itself and other Bagle-related malware from security scanners. Bagle started out as a simple e-mail borne executable and the addition of rootkit capabilities show how far ahead of the cat-and-mouse game the attackers are."
Top Ten Things Overheard At The ANSI C Draft Committee Meetings:
(3) Ha, ha, I can't believe they're actually going to adopt this