Rootkit capabilities likely with Windows bugs

23 April 2024

Several rootkit-like capabilities could be obtained by threat actors through the exploitation of vulnerabilities in Windows’ DOS-to-NT path conversion process, including file and process concealment and compromised prefetch file analysis, reports The Hacker News. Malicious actors could also leverage the issues to obfuscate a malware file as a verified Microsoft executable, as well as tap a denial-of-service bug to deactivate Process Explorer, according to a SafeBreach report presented at the Black Hat Asia conference.

Source: SC Magazine

Date:

23 April 2024

Categorie(s):

NEWS

Tag(s):

Microsoft, Network Security, OS, Rootkits, Windows

Microsoft plans to lock down Windows DNS like never before. Here’s how.4 May 2024
Kaspersky hits back at claims its AI helped Russia develop military drone systems4 May 2024
Kaspersky hits back at claims it helped Russia develop military drone systems3 May 2024
Smoke and (screen) mirrors: A strange signed backdoor3 May 2024
Kaspersky accused of helping Russia develop military drone systems3 May 2024