Bleeping Computer

New Mockingjay process injection technique evades EDR detection

A new process injection technique named 'Mockingjay' could allow threat actors to bypass EDR (Endpoint Detection and Response) and other security products to stealthily execute malicious code on ...
Dark Reading

Mockingjay Slips By EDR Tools With Process Injection Technique

Endpoint detection and response (EDR) systems have become increasingly efficient at detecting typical process injection attempts that invoke a combination of application programming interfaces to ...
TWCN Tech News

How malicious Cross-Process Injection helps attackers

Windows Defender ATP is a security service that enables security operations (SecOps) personnel to detect, investigate, and respond to advanced threats and hostile activity. Last week a blog post was ...
Dark Reading

Process Injection Tops Attacker Techniques for 2019

The threat landscape of 2019 was dominated with worm-like activity, researchers report in a new analysis of confirmed threats from the past year. Attackers are growing more focused on lateral movement ...
Bleeping Computer

Windows CLI Apps Vulnerable to New Ctrl-Inject Process Injection Attack

Rotem Kerner, a security researcher with enSilo, has discovered a new process injection technique that can be abused by malicious actors to hide malware inside Windows-based CLI applications. The ...
Threat Post

Analysis Reveals Flame Malware’s Process Injection Tricks

As researchers continue to pull apart the Gauss malware code, looking for spreading mechanisms and infection vectors, there is still some work being done on Gauss’s cousin Flame, as well. New research ...