Security News > 2024 > December > New Malware Technique Could Exploit Windows UI Framework to Evade EDR Tools

2024-12-11 15:13
A newly devised technique leverages a Windows accessibility framework called UI Automation (UIA) to perform a wide range of malicious activities without tipping off endpoint detection and response (EDR) solutions. "To exploit this technique, a user must be convinced to run a program that uses UI Automation," Akamai security researcher Tomer Peled said in a report shared with The Hacker News. "
News URL
https://thehackernews.com/2024/12/new-malware-technique-could-exploit.html
Related news
- FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux (source)
- EncryptHub Exploits Windows Zero-Day to Deploy Rhadamanthys and StealC Malware (source)
- DeepSeek AI tools impersonated by infostealer malware on PyPI (source)
- New Microsoft script updates Windows media with bootkit malware fixes (source)
- Hackers exploit SimpleHelp RMM flaws to deploy Sliver malware (source)
- DragonRank Exploits IIS Servers with BadIIS Malware for SEO Fraud and Gambling Redirects (source)
- FBI: Free file converter sites and tools deliver malware (source)
- APTs have been using zero-day Windows shortcut exploit for eight years (ZDI-CAN-25373) (source)
- Steam pulls game demo infecting Windows with info-stealing malware (source)
- Broadcom warns of authentication bypass in VMware Windows Tools (source)