Sony rootkit backdoor program

10 Nov 2005

minute read

Yury Mashevsky

Authors

Yury Mashevsky

The first backdoor which utilizes the ‘Sony rootkit‘ was detected today. We’ve classified this malicious program as Backdoor.Win32.Breplibot.b.

We’re analyzing the progam at the moment and will have more information soon. Watch this space.

Sony rootkit backdoor program

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Latest Posts

Latest Webinars

Reports

Kaspersky researchers uncovered malicious wheel packages in PyPI that targeted both Windows and Linux and contained a dropper delivering malware dubbed ZiChatBot. We attribute this activity to OceanLotus APT.

The Silver Fox group is targeting companies in Russia and India by impersonating tax authorities to distribute ValleyRAT and the new ABCDoor backdoor.

Kaspersky researchers analyze updated CoolClient backdoor and new tools and scripts used in HoneyMyte (aka Mustang Panda or Bronze President) APT campaigns, including three variants of a browser data stealer.

Kaspersky discloses a 2025 HoneyMyte (aka Mustang Panda or Bronze President) APT campaign, which uses a kernel-mode rootkit to deliver and protect a ToneShell backdoor.

Sony rootkit backdoor program

GReAT Ideas. Balalaika Edition

GReAT Ideas. Green Tea Edition

GReAT Ideas. Powered by SAS: malware attribution and next-gen IoT honeypots

GReAT Ideas. Powered by SAS: threat actors advance on new fronts

GReAT Ideas. Powered by SAS: threat hunting and new techniques

The antivirus weather forecast: cloudy

Crimeware: A new round of confrontation begins…

Malware Miscellany, September 2009

Malware Miscellany, December 2008

Malware Miscellany, November 2008

The game is over: when “free” comes at too high a price. What we know about RenEngine

Deep analysis of the flaw in BetterBank reward logic

Post-exploitation framework now also delivered via npm

Massive npm infection: the Shai-Hulud worm and patient zero

The SOC files: Rumble in the jungle or APT41’s new target in Africa

Latest Posts

Exploits and vulnerabilities in Q1 2026

OceanLotus suspected of using PyPI to deliver ZiChatBot malware

Websites with an undefined trust level: avoiding the trap

“Legitimate” phishing: how attackers weaponize Amazon SES to bypass email security

Latest Webinars

The power of enrichment: Boosting your product with threat intelligence

2026 cyber world: Inside the attacker’s playbook

SOC: Build, buy, or hybrid?

Inside the dark web job market: Their talent, our threat

Reports

OceanLotus suspected of using PyPI to deliver ZiChatBot malware

Silver Fox uses the new ABCDoor backdoor to target organizations in Russia and India

HoneyMyte updates CoolClient and deploys multiple stealers in recent campaigns

The HoneyMyte APT evolves with a kernel-mode rootkit and a ToneShell backdoor

Subscribe to our weekly e-mails