DLL Hijacking
Detecting and Defending Against DLL Sideloading Attacks
Many published security vulnerabilities and attacks are over-hyped; however, dynamic-link library (DLL) sideloading, also known as DLL hijacking, often fails to receive the recognition it deserves. These flaws are unappreciated gems for ...
Banking Trojan Metamorfo Hijacks Trusted Apps to Run Malware
Bitdefender researchers Janos Gergo SZELES and Ruben Andrei CONDOR have documented a new Metamorfo campaign that uses legitimate software components to compromise computers. Metamorfo is a family of banker Trojans that has ...
Scranos Revisited – Rethinking persistence to keep established network alive
In April, Bitdefender broke the news of an emerging botnet dubbed Scranos. Originating from China, it has spread across Europe and the United States, snaring Windows and Android devices with advertising fraud ...
Cisco Takes Another Stab at Patching Recent WebEx Vulnerability
Cisco Systems has released a new patch for a remotely exploitable privilege escalation vulnerability after security researchers found that its previous fix was incomplete. The company first patched the vulnerability, known as ...
SSD Advisory – LINE Corporation URI Handlers Remote Commands Execution
Vulnerabilities Summary LINE for Windows provided by LINE Corporation specifies the path to read DLL when launching software. A user clicking on a specially crafted link, can use this vulnerability to cause ...