IT Pro is supported by its audience. When you purchase through links on our site, we may earn an affiliate commission. Learn more

Microsoft confirms rootkit caused 'blue screen of death'

A Microsoft investigation has confirmed the firm's suspicions that an XP flaw is caused by rootkit malware.

Blue Screen of Death malware

Microsoft today confirmed it was a rootkit that lead to blue screen of death for XP users, following its February Patch Tuesday.

The patch was released on 9 February, and soon after Microsoft's forums were flooded with complaints from XP users whose computers had crashed after the updates were installed.

The software giant suspected it was down to rootkit malware but has only today confirmed the precise details through a blog from Mike Reavey, director of the Microsoft Security Response Centre.

"Our investigation has concluded that the reboot occurs because the system is infected with malware, specifically the Alureon rootkit," he wrote.

"The restarts are the result of modifications the Alureon rootkit makes to Windows Kernel binaries, which places these systems in an unstable state. In every investigated incident, we have not found quality issues with security update MS10-015."

Reavey claimed the malware was not detected by Microsoft testers as it had affected its own test machines leaving them in an unreliable state.

The team is now working on new ways to detect malware issues on affected systems as well as a way of detecting and removing Alureon, which it hopes to launch in the next couple of weeks.

Reavey's blog concluded: "Our guidance remains the same: customers should continue to deploy this month's security updates and make sure their systems are up-to-date with the latest anti-virus software."

Featured Resources

Meeting the future of education with confidence

How the switch to digital learning has created an opportunity to meet the needs of every student, always

Free Download

The Total Economic Impact™ of IBM Cloud Pak® for Watson AIOps with Instana

Cost savings and business benefits

Free Download

The business value of the transformative mainframe

Modernising on the mainframe

Free Download

Technology reimagined

Why PCaaS is perfect for modern schools

Free Download

Recommended

Hackers could use new Wslink malware in highly targeted cyber attacks
malware

Hackers could use new Wslink malware in highly targeted cyber attacks

1 Nov 2021
FBI raids Chinese POS business following cyber attack claims
malware

FBI raids Chinese POS business following cyber attack claims

27 Oct 2021
Malware developers create malformed code signatures to avoid detection
malware

Malware developers create malformed code signatures to avoid detection

24 Sep 2021
New malware uses search engine ads to target pirate gamers
malware

New malware uses search engine ads to target pirate gamers

21 Jul 2021

Most Popular

How to boot Windows 11 in Safe Mode
Microsoft Windows

How to boot Windows 11 in Safe Mode

7 Jun 2022
Attracting and retaining talent through training
Sponsored

Attracting and retaining talent through training

13 Jun 2022
Delivery firm Yodel disrupted by cyber attack
cyber attacks

Delivery firm Yodel disrupted by cyber attack

21 Jun 2022