64-bit Security News

The newest build for Zemana AntiLogger, one of the best solutions against all sorts of logging, brings to the table repairs that affected all available modules.

A hacker known as w3bd3vil posted a message on Twitter a couple of days ago claiming that he found a vulnerability in the 64-bit version of Windows 7 that could be taken advantage of using Apple’s popular web browser Safari.

OLSync is a directory synchronization tool used to replicate and synchronize user information between your on-premises Active Directory Domain Services or Active Directory directory service and Outlook Live for Live@edu.

Emsi Software incremented the build number only by two notches today for its Online Armor Firewall, bringing it to version 5.1.1.1395. It is not a spectacular build, but a minor one that takes care of an issue with certification verification.

SUNNYVALE, CA--(Marketwire - 06/09/11) - Fortinet® (NASDAQ:FTNT - News) -- a leading network security provider and the worldwide leader of unified threat management (UTM) solutions -- today released its latest Threat Landscape report, which details two prominent detections belonging to the TDSS family of rootkits that are capable of infecting 64-bit Windows operating systems. The TDSS rootkit, which is difficult to detect and remove, has full access to any system it infects and can mask its activity to administrators and end users.

Kaspersky highlights malicious programs attacking Mac OS X, 64-bit Windows and Sony hacks as the most significant events of May - Kaspersky Lab said in a recent press release and blog post that May 2011 was characterised by a rogue antivirus program for Mac OS X, a banking rootkit for 64-bit Windows from a group of Brazilian cyber-criminals, and Sony remaining a target for hackers.

Rootkit writers have started exploiting a loophole that lets them write malware able to bypass the PatchGuard driver signing protection built into 64-bit versions of Windows, Kaspersky Lab has reported.

The last 12 months have seen the volume of 64-bit Win7-equipped machines being sold rising steadily and it seems that cybercriminals have woken up to the trend, developing 64-bit malware.

A new piece of Brazilian banking malware capable of spoofing SSL-protected sites has been fitted with a rootkit component able to infect 64-bit Windows systems. - According to security researchers from antivirus vendor Kaspersky Lab, the malware was distributed through a drive-by download attack launched from a popular compromised Brazilian website.

Security researchers have come across a new rootkit that is designed specifically to infect 64-bit Windows systems and steal users' online banking credentials. It's believed to be the first piece of malware of its kind that is capable of compromising x64 systems.

TDL4, one of the most sophisticated rootkits capable of infecting 64-bit Windows systems, was updated by its developers to bypass a recent Microsoft patch that interfered its operation. During last month's Patch Tuesday, on April 12, Microsoft issued an update that made some changes particularly designed to disable TDL4's hiding mechanism.

The malware state of the art continues to improve. In particular, the latest version of the TDL rootkit family--aka Olmarik, TDSS, Alureon--contains sophisticated mechanisms for bypassing security features built into 64-bit versions of Microsoft Windows Vista and Windows 7, and can download additional, standalone malware applications.

Modifications made as part of a Windows update released by Microsoft this week effectively kill the notorious TDL4 rootkit on 64-bit Windows Vista and 7. Since 64-bit Windows only accepts digitally-signed drivers, there are very few rootkits that manage to infect such systems.

Do you think your PC has a virus? - The Microsoft Safety Scanner is a free downloadable security tool that provides on-demand scanning and helps remove viruses, spyware, and other malicious software. It works with your existing antivirus software.

With the introduction of the Windows Operating System Loader Update, Microsoft has closed down one of the vectors that rootkits abuse in order to remain on infected Windows computers. Referred to as the Rootkit Evasion Prevention tool, Microsoft Security Advisory (2506014) is actually a refresh of the Windows Operating System Loader (winload.exe).