According to recent research, bad actors could manipulate the Windows Container Isolation Framework to use a cunning malware detection evasion approach and get around endpoint security measures.
At the DEF CON security conference earlier this month, Deep Instinct security researcher Daniel Avinoam revealed the findings.
By using what is known as a dynamically produced image, Microsoft’s container design (and consequently, Windows Sandbox) avoids duplicating system files while separating the file system from each container to the host. It is merely an “operating system image with clean copies of changeable read more Hackers Can Exploit Windows Container Isolation Framework to Bypass Endpoint Security.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.