Security Vendors Clueless Over Rootkit Invasion November 16, 2005
http://www.eweek.com/article2/0,1895,1887826,00.asp page 1 http://www.eweek.com/article2/0,1895,1887861,00.asp page 2 Today, existing security applications are ill-prepared to deal with the threat from offensive rootkits. Finnish anti-virus specialist F-Secure Corp. is the first to add a rootkit detection engine in its security suite, but for other big-name anti-virus vendors -- including Symantec Corp., McAfee Inc. and Trend Micro Inc. -- true rootkit detection/removal capabilities are nonexistent. "You could say the average end user is a sitting duck," said Jamie Butler, director of engineering at HBGary Inc. and author of FU, one of the first proof-of-concept rootkits. "We really don't know the extent of rootkit penetration. But it won't surprise me to find out that it's a bigger problem today than we think it is. This will become an even bigger story if a bank or a federal agency discovered that a rootkit has been deeply nested and has been hiding its presence for months. At that point, all hell will break loose," Butler added. --- -- ---------------------------------------- WIN-HOME Archives: http://PEACH.EASE.LSOFT.COM/archives/WIN-HOME.html Contact the List Owner about anything: [EMAIL PROTECTED] Official Win-Home List Members Profiles Page http://www.besteffort.com/winhome/Profiles.html
