"New Version of Dridex Banking Trojan Uses ‘AtomBombing’ To Infect Systems"

A new version of the Dridex banking Trojan has been discovered and this time it is being injected through a newly developed technique called AtomBombing. This new code injection technique has already been performed to attack multiple online banking organizations all over Europe. AtomBombing can bypass usual security measures and inject malicious code into atom tables, which are used by Windows OS to store data for some applications. This article discusses how this new code injection is performed as well as the difficulty of detecting it.  

http://www.darkreading.com/attacks-breaches/new-version-of-dridex-banking-trojan-uses-atombombing-to-infect-systems/d/d-id/1328299?  

Submitted by Anonymous on