URL has been copied successfully!
Iranian Hackers Hijack AppDomainManager to Bypass EDR
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Iranian Hackers Hijack AppDomainManager to Bypass EDR


Tags: , , , , , , , , ,

Iran-linked hackers have upgraded their tradecraft by using AppDomainManager hijacking in .NET applications to turn off security telemetry before malicious code fully starts, making endpoint detection and response tools much harder to spot the attack. The campaign, attributed to the Iran-nexus group Screening Serpens, pairs this technique with DLL sideloading, fake job lures, and staged […] The post Iranian Hackers Hijack AppDomainManager to Bypass EDR appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.

First seen on gbhackers.com

Jump to article: gbhackers.com/iranian-hackers-hijack-appdomainmanager/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Top 12 ways hackers broke into your systems in 2024
  2. 12 digital forensics certifications to accelerate your cyber career
  3. ‘I am not a robot’: Russian hackers use fake CAPTCHA lures to deploy espionage tools
  4. What are zero-day attacks and why do they work?