Feedly:Securelist - Information about Viruses, Hackers and Spam. I am HDRoot! Part 2

from Securelist - Information about Viruses, Hackers and Spam

Some time ago while tracking Winnti group activity we came across a standalone utility with the name HDD Rootkit for planting a bootkit on a computer. During our investigation we found several backdoors that the HDRoot bootkit used for infecting operating systems.