Windows “Process Doppelgänging” Attack Fools Major Anti-Virus Software #BlackHatEurope
At the BlackHat Europe 2017 conference, security researchers from enSilo demonstrated a new code injection attack for Windows OS called “Process Doppelganging.” The attack method can be used to bypass even updated modern AV software and execute malicious codes that are already known to security companies. The same is done by making fishy things look like […]