SynAck targeted ransomware uses the Doppelgänging technique
In Summary : The Process Doppelgänging technique was first presented in December 2017 at the BlackHat conference. Since the presentation ...
https://updatesinfosec.blogspot.com/2018/05/synack-targeted-ransomware-uses.html
In Summary :
The Process Doppelgänging technique was first presented in December 2017 at the BlackHat conference. Since the presentation several threat actors have started using this sophisticated technique in an attempt to bypass modern security solutions. In April 2018, we spotted the first ransomware employing this bypass technique – SynAck ransomware. It should be noted that SynAck is not new – it has been known since at least September 2017 – but a recently discovered sample caught our attention after it was found to be using Process Doppelgänging. Here we present [...]
kindly refer the following link as follow up :
https://ift.tt/2JXA2IO
The Process Doppelgänging technique was first presented in December 2017 at the BlackHat conference. Since the presentation several threat actors have started using this sophisticated technique in an attempt to bypass modern security solutions. In April 2018, we spotted the first ransomware employing this bypass technique – SynAck ransomware. It should be noted that SynAck is not new – it has been known since at least September 2017 – but a recently discovered sample caught our attention after it was found to be using Process Doppelgänging. Here we present [...]
kindly refer the following link as follow up :
https://ift.tt/2JXA2IO
