ZDNet

Microsoft Sysmon adds support for detecting Process Herpaderping attacks

Microsoft has released a new version of the Sysinternals package and updated the Sysmon utility with the ability to detect Process Herpaderping and Process Hollowing attacks. Systems running the ...
Bleeping Computer

Microsoft Sysmon now detects malware process tampering attempts

Microsoft has released Sysmon 13 with a new security feature that detects if a process has been tampered using process hollowing or process herpaderping techniques. To evade detection by security ...
Bleeping Computer

Microsoft Adds Protection Against Process Hollowing and Atom Bombing

Microsoft has worked on adding security protections against two forms of code injection techniques known as process hollowing and atom bombing. These new protections will debut with the Windows 10 ...
Homeland Security Today

Dissecting a NETWIRE Phishing Campaign’s Usage of Process Hollowing

Malware authors attempt to evade detection by executing their payload without having to write the executable file on the disk. One of the most commonly seen techniques of this “fileless” execution is ...
ZDNet

Attackers now use process hollowing to hide cryptocurrency miners on your PC

Researchers have documented the use of a process hollowing technique to disguise the presence of cryptocurrency mining malware on infected systems. On Wednesday, Trend Micro researchers Arianne Dela ...