You probably know that hackers have been using the registry’s Run and RunOnce keys for decades to automatically start their malware when a user logs on. While those keys are still being used in attacks, there are many others you need to know about as well. In this webinar, Windows security expert Randy Franklin Smith shines a light into several dark corners of the registry that bad guys are now exploiting.
In particular, we’ll review how the bad guys are exploiting the registry for privilege elevation, and the most recent way bad guys are leveraging the registry — as a storage location for their code, making their malware file-less.
In this webinar, Randy will show: