Bleeping Computer

Windows CLI Apps Vulnerable to New Ctrl-Inject Process Injection Attack

Rotem Kerner, a security researcher with enSilo, has discovered a new process injection technique that can be abused by malicious actors to hide malware inside Windows-based CLI applications. The ...
Threat Post

Attackers Use Event Logs to Hide Fileless Malware

A sophisticated campaign utilizes a novel anti-detection method. Researchers have discovered a malicious campaign utilizing a never-before-seen technique for quietly planting fileless malware on ...
The Hacker News

Mustang Panda Uses Signed Kernel-Mode Rootkit to Load TONESHELL Backdoor

Mustang Panda deployed TONESHELL via a signed kernel-mode rootkit, targeting Asian government networks and evading security ...
Dark Reading

Attackers Combining Smoke Loader & PROPagate in New Campaign

The combination of the Smoke Loader backdoor and the PROPagate injection technique has shown up again in a new campaign. As first noted by FireEye earlier this month, the injection technique allows ...