Ping.
It’s called Windows?
Can it overwrite the MBR on a Safe Boot / UFEI machine?
More info:
Cisco researchers have identified a new malware sample, called Rombertik, that takes its detection evasion features one step further than the average cyber threat.
Instead of simply self-destructing when analysis tools are detected, Rombertik attempts to destroy the device’s master boot record (MBR), researchers wrote in a blog post.
This malware spreads through spam and phishing messages sent to possible victims.
In one example, attackers attempted to convince a user to download an attached document in an email. If downloaded and unzipped, a file that looks like a document thumbnail comes up. Although it mimics a PDF icon, it is actually a .SCR screensaver executable file containing the malware.
At this point Rombertik will first run anti-analysis checks to determine whether it is running within a sandbox. If it isn’t, it will then decrypt and install itself, which then allows it to launch a second copy of itself and to overwrite the second copy with the malware’s core functionality.
...
No, it doesn't.
bing
No doubt created by liberal democrats so Hillary can say that is what happened to all of her e-mails. Yeah, that’s the ticket, virus destroyed my e-mails, and Morgan Fairchild’s too.
Security expert Graham Cluley said destructive viruses such as Rombertik were quite rare.So far.
Stop talking about Windows like that!
"involves reinstalling Windows, which could mean important data is lost"
This does not make logical sense, I've reinstalled Windows many times with no loss of data.
This will continue until we bring back public hanging.
Wont affect my awesome linux pc ha
Wrong. Restoring a corrupted MBR is child's play; I've done it several times for clients.
Whoever makes these things need to be drawn and quartered
I recommend capital punishment for the animals who create these things. A firing squad would be too kind.
A week ago my second desktop started acting weird, constantly restarting. I fixed the problem by hitting the F2 key and got into Windows. I then ran two anti-virus programs and it hasn’t recurred. Don’t know if this is related but I had never had that happen before. That was my wife’s computer and she is sure that she didn’t download anything but I’m guessing something was downloaded.
BS!
Boot into the recovery console:
bootrec /fixmbr bootrec /fixboot
And you're back. Granted, your system is still infected, but you're not in a boot loop.
I have to imagine they've figured out how to isolate and study this. Virtual machines are a wonderful thing.
Sounds like Rombertik has been through some serious SERE training. =;^)