April 30, 2013, 2:45 pm
in Anti-Malware Research, Free Tools , by Razvan Stoica

New TDL clones are making the rounds these days, according to Bitdefender Labs antimalware researcher Marius Tivadar. The samples in question (which are just now completely analyzed) date from the beginning of April.

February 14, 2013, 4:36 pm
in Anti-Malware Research , by Razvan Stoica

Antimalware researchers Marius Tivadar and Cristian Istrate are back, this time with an update on the infamous CPD bootkit family:

Comments Off on CPD Makes Use of Hidden Sectors
February 12, 2013, 11:05 am
in Uncategorized , by Razvan Stoica

Antimalware researchers Marius Tivadar and Cristian Istrate are back with a small update from the labs, this time about the Whistler bootkit family.

Comments Off on Unencrypted Whistler Variant in the Wild
February 1, 2013, 3:43 pm
by Razvan Stoica

The Bitdefender Rootkit Remover deals with known rootkits quickly and effectively making use of award-winning Bitdefender malware removal technology. Unlike other similar tools, Bitdefender Rootkit Remover can be launched immediately, without the need to reboot into safe mode first (although … Continue reading

January 24, 2013, 4:10 pm
in Uncategorized , by Razvan Stoica

We don’t usually comment on legal matters here at the Bitdefender Labs blog, in fact we generally refrain from comments in favour of presenting actual facts. However. The government of the United Kingdom, via the Information Commissioner’s Office (the ICO) … Continue reading

Comments Off on Responsibility for securing users’ data – what a concept!
November 6, 2012, 7:48 pm
in Anti-Malware Research , by Bogdan Botezatu

Ever since the release of Windows 8, one of the key marketing points of the new OS made in Redmond was built-in safety. Given that we’re a curious bunch of people here in the Labs, we decided to take an … Continue reading

May 18, 2012, 3:16 pm
in Anti-Malware Research , by Razvan Stoica

The ZeroAccess crimeware package has beed made rather much of, in view of its advanced kernel-mode rootkit driver. The Sirefef rootkit is highly aggressive and rather hard to detect; it exhibits polymorphism, overwrites legitimate system driver files to replace them … Continue reading

November 15, 2011, 4:35 pm
in Uncategorized , by Razvan Stoica

TDL 4 variants have surfaced recently, making security researchers suspect that the code may have been sold on the black market. 

September 3, 2010, 4:46 pm

The latest incarnation of the TDL3 rootkit is capable of infecting x64 systems. Ironically enough, the basic techniques used to achieve this are positively ancient by the computing world’s standards, having been perfected in the MS-DOS age.

1 Comment
May 27, 2010, 5:40 am
in Anti-Malware Research , by admin

Development may be slowing down, but TDL3, possibly the biggest rootkit threat of the year, is not entirely static and in fact seems to have added self-defense features recently. Are the creators of infamous TDL3 rootkit running out of steam? … Continue reading