There are many threats that can jeopardize the proper functioning of the equipment, as well as the privacy of the users. It is true that security tools in recent years have improved significantly to detect problems and prevent systems from becoming infected. However, it is also the hackers themselves who perfect their techniques to skip protection. Today we echo a new threat, BIOLOAD , which puts Windows 10 users in check and also does so without being detected.
BIOLOAD, a new undetectable threat for Windows 10
Windows 10 is today the most used operating system for desktop users. It is logical to think that cybercriminals will set their sights here. After all, they seek to attack what has the most possible victims. In this case, this new threat called BIOLOAD is designed to attack the Microsoft operating system.
One of the highlights of this problem is that we cannot detect it. At least not simply like most threats of this type. This new tool has similarities with the FIN7 BOOSTWRITE tool that is based on the DLL search of applications to be able to run. BOOSTWRITE abuses the legitimate “Dwrite.dll”.
BIOLOAD is the new version of the BOOSTWRITE tool. In both cases we have the same code base and open the back door of Carbanak. Both tools take advantage of the Windows operating system method to find the necessary DLLs to load into a program. This makes detection difficult.
Specifically, as the security researchers who have detected this threat inform us, attackers take advantage of the DLL search by placing the fake version of WinBio.dll (containing uppercase letters) in the same folder of FaceFodUninstaller “% WINDR% / System32 / WinBioPlugIns” . In this way they manage to place the necessary file to have elevated privileges on the victim’s computer.
Keep in mind that BIOLOAD affects users who have Windows 10 in its 64-bit version.
Most antivirus does not detect it
As we mentioned this threat is not easily detected. In fact, as security researchers report, most antivirus programs are not able to detect the problem . Here you have to include some of the most popular and used.
Undoubtedly we are facing an important problem, since many users rely on the antivirus they have installed to prevent the entry of threats and to detect possible malware installed on the system. That is why we must take additional measures to avoid being victims of this problem.
Something very important is common sense . In many cases this type of problem comes after a misuse we have given to technology. For example downloading software from sources that are not official, open attachments in the email that may be a threat, etc. It is vital that we always use common sense and not put our equipment at risk.
In the same way it will be interesting to keep the equipment correctly updated . Sometimes vulnerabilities arise that are exploited by hackers. It is essential that we always have the latest versions installed.
