rootkits – WindowsTechs.com

Linux systems targeted with stealthy “Perfctl” cryptomining malware

Posted on October 7, 2024 by Zeljka Zorz

Thousands of Linux systems are likely infected with the highly elusive and persistent “perfctl” (or “perfcc“) cryptomining malware and many others still could be at risk of getting compromised, Aqua Security researchers revealed… Continue reading Linux systems targeted with stealthy “Perfctl” cryptomining malware→

0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193)

Posted on August 20, 2024 by Zeljka Zorz

CVE-2024-38193, an actively exploited zero-day that Microsoft patched earlier this month, has been leveraged by North Korean hackers to install a rootkit on targets’ computers, Gen Digital researchers have revealed. About CVE-2024-38193 CVE-2024-… Continue reading 0-day in Windows driver exploited by North Korean hackers to deliver rootkit (CVE-2024-38193)→

Potential Linux.Xor.DDoS – chkrootkit

Posted on August 8, 2024 by Server

I have a Debian server, and I was recently contacted by my hosting provider that my server is being used to DDoS people/servers. Is this the cause?
Searching for Linux.Xor.DDoS … INFECTED: Possible Malicious Linux.Xor.DDoS installed
/tmp… Continue reading Potential Linux.Xor.DDoS – chkrootkit→

Potential Linux.Xor.DDoS – chkrootkit

Posted on August 8, 2024 by Server

chkrootkit output interpretation help [closed]

Posted on May 14, 2024 by dumbdump

I ran the following command:
sudo chkrootkit -x | more

And the output is as follows:
ROOTDIR is `/’
not found
###
### Output of: /usr/bin/strings -a /usr/bin/basename
###
@(#)PROGRAM:basename PROJECT:shell_cmds-309.120.3
Qs@$FreeBSD$
std… Continue reading chkrootkit output interpretation help [closed]→

How to enable USB debugging mode when it has been disabled [migrated]

Posted on April 28, 2024 by chickenj0

I have a Samsung Android which I am almost certain has malware/a rootkit on it.
I’d like to take a forensic image of the device.
In developer mode, the ‘USB debugging’ mode is shaded in and set to off. I don’t know how to unshade it and se… Continue reading How to enable USB debugging mode when it has been disabled [migrated]→

How to fix Secure Boot error "Image failed to verify with ACCESS DENIED"(possible firmware rootkit) [migrated]

Posted on April 2, 2024 by Ramzialzaki Weir

When attempting to boot a live OS via USB or CD, I get the secure boot error: "Image failed to verify with ACCESS DENIED". There is no SSD/HDD installed. Secure boot is enabled and while i know that disabling secure boot will all… Continue reading How to fix Secure Boot error "Image failed to verify with *ACCESS DENIED*"(possible firmware rootkit) [migrated]→

Why do I suddenly receive print notifications on Windows 10? [closed]

Posted on December 10, 2023 by priv-like-user

I have seen whats’s in the image.
But i don’t have any printer.
OS: Windows 10 22H2

Continue reading Why do I suddenly receive print notifications on Windows 10? [closed]→

Kaspersky’s Advanced Persistent Threats Predictions for 2024

Posted on November 20, 2023 by Cedric Pernet

New botnets, more AI in spearphishing and increases in hack-for-hire business are some of Kaspersky’s security predictions. Get extensive APT mitigation tips, too. Continue reading Kaspersky’s Advanced Persistent Threats Predictions for 2024→

Advanced threat predictions for 2024

Posted on November 14, 2023 by GReAT

Kaspersky researchers review APT predictions for 2023 and current trends in the advanced threat landscape, and try to predict how it will develop in 2024. Continue reading Advanced threat predictions for 2024→