Why are RootKits so dangerous?

The main form of an attack for a rootkit is stealth. They will hide away, deep in the recesses of your computer. Because they have administrator-level access they can do things like hijack your Windows searches and hide any information about the RootKit, control your Anti-Virus software and tell it to ignore the RootKit, hide from the list of active processess. And a whole lot more besides!

The most famous RootKit was one that was installed by some Sony audio CDs. Sony hid a RootKit on people’s computer as part of its Digital Rights Managment strategy. This gave them effective control of a user’s PC. A security expert called Mark Russinovich (of Sysinternals) discovered the Sony RootKit, and it made the news the world over. Sony had to issue a download so that people get the RootKit off their computers. They also recalled all the music CDs that had the RootKit software.

It’s the fact that RootKits are so difficult to detect that makes them dangerous.



About Dinesh

I am engineering student........ I am selected in Microsoft Student Partner as MSP............

Posted on July 8, 2011, in Knowledge. Bookmark the permalink. 1 Comment.

  1. .In this first of two articles on how to defeat a rootkit well take a look at what a rootkit is the types where they hide and their dangers.In well discuss how rootkits can be detected. Rootkits came to prominence in 2005 when Sony placed a root kit on their music CDs.

Leave a Reply

Please log in using one of these methods to post your comment:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: