Major EDRs fail to flag novel process injection techniques | allinfosecnews.com

Dec. 9, 2023, 12:09 a.m. | SC Staff

SC Magazine feed for Threats www.scmagazine.com

None of the endpoint detection and response solutions from Microsoft, SentinelOne, CrowdStrike, Cybereason, and Palo Alto Networks were able to detect or prevent eight new process injection techniques using Windows thread pools to execute malicious code dubbed "Pool Party," reports SecurityWeek.

alto code crowdstrike cybereason detect detection detection and response edr edrs endpoint endpoint detection endpoint detection and response endpointdevice-security fail flag injection major malicious microsoft networks novel palo palo alto palo alto networks party pool party process process injection reports response sentinelone solutions techniques vulnerability management windows

More from www.scmagazine.com / SC Magazine feed for Threats

Updated CISA exploited vulnerabilties catalog includes Windows print spooler bug 5 days, 3 hours ago | www.scmagazine.com

agency apt28 attacks bear +37

Novel Kaolin RAT malware distributed in Lazarus Group attacks 5 days, 4 hours ago | www.scmagazine.com

asia attacks distributed fraudulent +16

Infections with abandoned PlugX USB worm continue to be prevalent 5 days, 4 hours ago | www.scmagazine.com

addresses ars technica compromised continue +14

Threat Modeling and Understanding Inherent Threats - Adam Shostack - ESW #359 5 days, 22 hours ago | www.scmagazine.com

adam adam shostack breach modeling +7

How GenAI Can Improve SecOps - Ely Kahn - ESW #359 6 days, 8 hours ago | www.scmagazine.com

aiml can genai secops +2

Indiana water plant hack admitted by Russian hackers 1 week, 1 day ago | www.scmagazine.com

cnn critical-infrastructure-security cyberattack electricity +14

New tool used in China-linked attacks against Asia-Pacific 1 week, 2 days ago | www.scmagazine.com

asia attacks backdoor blacktech +18

Russia’s Sandworm APT linked to attack on Texas water plant 1 week, 6 days ago | www.scmagazine.com

apt attack campaign critical-infrastructure-security +9

Novel Kapeka backdoor leveraged in Sandworm attacks 1 week, 6 days ago | www.scmagazine.com

advanced advanced persistent threat apt44 attacks +20

EY- GDS- Cybersecurity- Staff

@ EY | Miguel Hidalgo, MX, 11520

View on infosec-jobs.com

Staff Security Operations Engineer

@ Workiva | Ames

View on infosec-jobs.com

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

@ Highwire Public Relations | Los Angeles, CA

View on infosec-jobs.com

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

@ Airbus | Mirabel

View on infosec-jobs.com

Investigations (OSINT) Manager

@ Logically | India

View on infosec-jobs.com

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, NY, Virtual Location - New York

View on infosec-jobs.com