Security News > 2017 > March > DoubleAgent attack uses built-in Windows tool to hijack applications (Help Net Security)
2017-03-22 21:06
Security researchers from computer and network security outfit Cybellum have revealed a new zero-day code injection and persistence technique that can be used by attackers to take over applications and entire Windows machines. They demonstrated the attack on antivirus solutions, and ultimately dubbed it DoubleAgent, as it turns the antivirus security agent into a malicious agent. The DoubleAgent attack “DoubleAgent exploits a legitimate tool of Windows called ‘Microsoft Application Verifier’ which is a tool included … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/zUqIFK9Vqcc/
Related news
- Patch Tuesday: January 2025 Security Update Patches Exploited Elevation of Privilege Attacks (source)
- Balancing usability and security in the fight against identity-based attacks (source)
- 7-Zip fixes bug that bypasses Windows MoTW security warnings, patch now (source)
- Microsoft: January Windows security updates break audio playback (source)
- Security pros more confident about fending off ransomware, despite being battered by attacks (source)
- Microsoft shares workaround for Windows security update issues (source)
- CrowdStrike Security Report: Generative AI Powers Social Engineering Attacks (source)