Infosecurity-magazine.com

API Hooking - Evading Traditional Detection with Stealthy New Techniques

Traditional malware detection and forensic investigation techniques typically focus on detecting malicious native executables to disk, and performing disk forensics to uncover evidence of historical ...
Bleeping Computer

Winnti's new UNAPIMON tool hides malware from security software

The Chinese 'Winnti' hacking group was found using a previously undocumented malware called UNAPIMON to let malicous processes run without being detected. Winnti, also known as APT41, is one of the ...
CSOonline

How Bitdefender HVI protects virtual browsers

The Bitdefender Hypervisor Introspection (HVI) tool sits below the hypervisor and prevents any of these tactics such as buffer overflows, heap sprays, code injection and API hooking from executing, ...