Windows 7 Forums

Welcome to Windows 7 Forums. Our forum is dedicated to helping you find support and solutions for any problems regarding your Windows 7 PC be it Dell, HP, Acer, Asus or a custom build. We also provide an extensive Windows 7 tutorial section that covers a wide range of tips and tricks.


Windows 7: New code injection exposes all versions of Windows to cyberattack.

29 Oct 2016   #1
groze

W7 32 bit, Linux Mint Xfce 18 64 bit
 
 
New code injection exposes all versions of Windows to cyberattack.

New code injection exposes all versions of Windows to cyberattack.



Researchers have disclosed a fresh attack against Microsoft's Windows operating system which can be used to inject malicious code and compromise user PCs.


On October 27, cybersecurity company enSilo's research team disclosed a practice called "AtomBombing" that can be launched against every version of Windows to bypass current security solutions which protect such systems from malware infections.


The technique is dubbed AtomBombing as it relies on underlying Windows atom tables to exploit a system. Atom tables are used to store strings and identifiers by Windows which support other application functions.




More info


My System SpecsSystem Spec
.
29 Oct 2016   #2
groze

W7 32 bit, Linux Mint Xfce 18 64 bit
 
 

What I don't understand is how it can bypass security software according to the zdnet article?
My System SpecsSystem Spec
29 Oct 2016   #3
lehnerus2000

W7 Ultimate SP1, LM18 MATE, W10IP VM, W10 Home, #All 64 bit
 
 

Quote   Quote: Originally Posted by groze View Post
What I don't understand is how it can bypass security software according to the zdnet article?
As far as I can tell this seems to be saying that:
  • The hacker injects malicious code into this table
  • The user asks a program to perform some action (which will access the corrupted code in the table)
  • The program asks Windows to execute the action
  • The user's AV program determines that Windows has requested this (malicious) action and therefore ignores it
My System SpecsSystem Spec
.

Reply

 New code injection exposes all versions of Windows to cyberattack.




Thread Tools Search this Thread
Search this Thread:

Advanced Search




Similar help and support threads
Thread Forum
Low-Level Code Injection
Is there any conflicts or protection with/for Low Level Code Injection into processes? Also, turning off DEP is the same as it was on vista correct? Thanks, Dante
System Security
U.S. Fails Test in Simulated Cyberattack.
Source - http://www.darkreading.com/security/cybercrime/showArticle.jhtml?articleID=222900775&cid=RSSfeed
Chillout Room


Our Sites

Site Links

About Us

Find Us

Windows 7 Forums is an independent web site and has not been authorized, sponsored, or otherwise approved by Microsoft Corporation. "Windows 7" and related materials are trademarks of Microsoft Corp.

Designer Media Ltd

All times are GMT -5. The time now is 11:22.

Twitter Facebook Google+



Windows 7 Forums

Seven Forums Android App Seven Forums IOS App