Security News > 2017 > March > DoubleAgent attack uses built-in Windows tool to hijack applications (Help Net Security)
2017-03-22 21:06
Security researchers from computer and network security outfit Cybellum have revealed a new zero-day code injection and persistence technique that can be used by attackers to take over applications and entire Windows machines. They demonstrated the attack on antivirus solutions, and ultimately dubbed it DoubleAgent, as it turns the antivirus security agent into a malicious agent. The DoubleAgent attack “DoubleAgent exploits a legitimate tool of Windows called ‘Microsoft Application Verifier’ which is a tool included … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/zUqIFK9Vqcc/
Related news
- Google Adds New Pixel Security Features to Block 2G Exploits and Baseband Attacks (source)
- WordPress LiteSpeed Cache Plugin Security Flaw Exposes Sites to XSS Attacks (source)
- Windows 10 KB5044273 update released with 9 fixes, security updates (source)
- EDRSilencer red team tool used in attacks to bypass security (source)
- ISC2 Security Congress 2024: The Landscape of Nation-State Cyber Attacks (source)
- Exploit released for new Windows Server "WinReg" NTLM Relay attack (source)
- Stop LUCR-3 Attacks: Learn Key Identity Security Tactics in This Expert Webinar (source)
- Windows infected with backdoored Linux VMs in new phishing attacks (source)
- Microsoft patches Windows zero-day exploited in attacks on Ukraine (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)