Some XP Users Get BSOD After Patch Tuesday, Malware Blamed

Microsoft pulled the MS10-015 update out of circulation last week due to user complaints that the patch caused their XP build to BSOD. After investigation, MS said that the issue is due to the TDSS rootkit and issued a statement that users have to remove the malware before patching. Yeah, good luck with that.

Because TDSS uses crafty techniques to hide itself on the operating system, many antivirus programs have a hard time detecting it, said Roel Schouwenberg, a Kaspersky antivirus researcher. "The more I look into it, the more plausible it becomes that this is indeed the (main) issue behind the BSOD. MS10-015 is a kernel update with atapi.sys containing the extremely advanced TDSS kernel rootkit," he said via instant message. "Microsoft pulling the patch obviously says something about how widespread this thing is."

Comments