LinuxQuestions.org - LXer: PandaLabs detects new rootkit attack that can change Linux MBR when running Win

- Syndicated Linux News (https://www.linuxquestions.org/questions/syndicated-linux-news-67/)

- - LXer: PandaLabs detects new rootkit attack that can change Linux MBR when running Win (https://www.linuxquestions.org/questions/syndicated-linux-news-67/lxer-pandalabs-detects-new-rootkit-attack-that-can-change-linux-mbr-when-running-win-613012/)

LXer: PandaLabs detects new rootkit attack that can change Linux MBR when running Win

Published at LXer:

Not really open source news, but still it might be valuable for those running a Win/(Lin/BSD) dual boot: PandaLabs detected a new kind of trojan (has to be Windows) that overwrites the Master Boot Record, and upon inspection of the MBR passes the original MBR of which it made a backup. This master boot 'virus' could run too if you boot Linux, before Linux is started. You can fix it by running 'fdisk /fixmbr' from some kind of Windows bootdisk PandaLabs suggest, but of course you could also do this using GRUB from a Linux/BSD LiveCD.

Read More...