cognitive cybersecurity intelligence

News and Analysis

Search

Attacks on Bytecode Interpreters Conceal Malicious Injection Activity

Attackers can execute malicious code undetected by inserting commands into a machine code stored in memory, escaping detection by most security software, according to a team of Japanese researchers from NTT Security and the University of Tokyo. The team was successful in using the technique in in-memory processes in VBScript, Python and Lua interpreters. Improved write protections and limiting memory write to the interpreter were recommended preventative measures. The researchers will present their findings at the forthcoming Black Hat USA conference.

Source: www.darkreading.com –

Subscribe to newsletter

Subscribe to HEAL Security Dispatch for the latest healthcare cybersecurity news and analysis.

More Posts