There is a new ransomware that is using ‘Process Doppelgänging’ attack to evade cybersecurity solutions

Cybersecurity researchers have discovered the first-ever ransomware exploiting Process Doppelgänging, which is a new fileless code injection technique that could help the ransomware to evade detection. The Process Doppelgänging attack leverage of a built-in Windows function, i.e., NTFS Transactions, and an outdated implementation of Windows process loader. The most significant[…]

Read more