'Hacker Defender' Rootkit Author Offers Cease-Fire

DATE: 07-MAR-2006
Discuss Total Posts: 1
By Paul F. Roberts
The author of the Hacker Defender rootkit said he's taking a break from developing the popular hacking tool—but that he may soon return to developing new rootkit programs.

The author, who uses the name "Holy Father," posted a message on the Hacker Defender Web site calling a truce with security companies that make anti-rootkit technology.

However, in an e-mail exchange with eWEEK, "Holy Father" said he isn't throwing in the towel, and that he may return to rootkit development after taking a break from Hacker Defender to work on other projects.

Hacker Defender is one of the best-known rootkit programs. Rootkits have been common in computer hacking circles for years, and allow attackers to maintain access to a computer, without being detected, long after they have compromised its defenses.

In recent years, authors have developed so-called "kernel mode" rootkits, like Hacker Defender, that manipulate information sent to Microsoft Windows' core processing center and are very difficult to detect.

PointerClick here to read what Microsoft is doing about the threat of rootkits.

Hacker Defender was initially released as an open-source program in 2004. More recently, Holy Father has sold updated copies of the rootkit, dubbed "Golden Hacker Defender," for 450 euros. That version of the program had an anti-detection engine designed to thwart anti-rootkit technology from vendors like anti-virus firm F-Secure, in Helsinki, Finland.

Read the rest of this eWEEK story: "'Hacker Defender' Rootkit Author Offers Cease-Fire"


 


Comment on this article
Comment Now  | 
Read All Talkback(s)
How can you Upgrade SAV to a version rootkit detection? by davidlsharpe, 5/15/2007 8:13:07 PM

For Symantec enterprise customers, the process of upgrading those out-of-support SAVCE agents (7.x and 8.x) got simpler. There is an article available at www.sharpebusinesssolutions.com/savce_upgrade.htm describing the process. The latest supported version of SAVCE has anti-rootkit support.

Read More ###  |  Reply to this Comment  |  Report Abuse

Sponsored Content
White Papers

No registration required to download these free white papers:

Security in the World of Web 2.0

Intelligent Infrastructure for Information Services

Making Server Consolidation A Reality

Protecting Client Systems from the Crimeware Invasion

Top 10 Ways to Increase Enterprise Security While Reducing Costs
Upcoming eSeminars

Data Protection Virtual Tradeshow
Cameron Crotty 50x50

Available On-Demand
Join Cameron Crotty and experts as they explore best practices and solutions needed to maintain a secure flow of data.
Available On-Demand
Security 2.0: Controlling Complexity
with Cameron Crotty. Sponsored by Symantec
Available On-Demand
Backup Exec 11d - The Gold Standard in Windows Data Recovery
with Frank Derfler. Sponsored by Symantec
Advertisement
Sponsors
  • 64 Pages of How-To Operational Advice for IT
  • You have a choice! Ericom's Alternative to Citrix
  • Discover what 2000 Cisco customers know about Riverbed
  • ScanSoft PDF Converter Professional 4
  • Defy the laws of reporting with Crystal Reports® 2008.
  • See how EMC can help you store more intelligently.
  • When Speed Counts, Count On 3Com.
  • Download the Windows Server® 2008 Release Candidate today.
    		•
    Security IT Hub Contact Us | About | Advertise
    Ziff Davis Enterprise

    Home | Contact Us | Advertise | Link to Us | Reprints | Magazine Subscriptions | Newsletters | RSS Feeds | Tech Shop | White Papers | Tech Encyclopedia | PC Downloads | ROI Calculators | Tech Jobs | Enterprise Product Comparison Guides | Tech Webcasts | Tech Podcasts | Tech Video

    1UP | AppScout | Baseline | Careers | Channel Insider | CIO Insight | Cranky Geeks | DesktopLinux | DeviceForge
    DevSource | DigitalLife | DL.TV | eSeminars | eWEEK | ExtremeTech | Filefront | GameVideos | GearLog
    LinuxDevices | Linux Watch | Microsoft Watch | Mid-market | My Cheats | Networking | PC Magazine | PCMagCasts | PDF Zone |
    Publish | Security IT Hub | Server IQ | Smart Device Central | Strategic Partner | TechnoRide | Web Buyer's Guide |
    What's New Now | Windows for Devices | Ziff Davis Media International

    Use of this site is governed by our Terms of Use and Privacy Policy
    Copyright © 2004-2006 Ziff Davis Publishing Holding Inc. All Rights Reserved. Security IT Hub is a trademark of Ziff Davis Publishing Holdings Inc. Reproduction in whole or in part in any form or medium without express written permission of Ziff Davis Media Inc. is prohibited.