Rootkits with a valid digital signature issued by Microsoft
Bitdefender has observed higher incidences of rootkits with valid digital signatures issued by Microsoft. At the moment it is still aimed at online gamers. But other targets can also be profitable for the attacker. The Bitdefender Labs experts have identified FiveSys, a new rootkit that uses its own valid digital signature issued by Microsoft instead of misusing stolen signatures. FiveSys allegedly attacks online gamers in order to steal digital identities and maliciously intervene in in-game purchases. By using a newly issued Microsoft signature, the hackers are pursuing an entirely new path. Because so far they used ...