Advertise
Sunday, 30 November 2025
30.2 C
Singapore
30 C
Thailand
23.4 C
Indonesia
28.3 C
Philippines
type here...
Advertise
In brief Report shows close to 300 Windows 10 executables vulnerable to DLL hijacking
Business
1 min.Read

In brief: Report shows close to 300 Windows 10 executables vulnerable to DLL hijacking

Nurin Sofia
By Nurin Sofia
  • In a new report from a PwC UK security researcher Wietze Beukema, it shows that almost 300 Windows 10 executables are vulnerable to DLL hijacking.
  • A simple VBScript may be enough to allow users to gain administrative access and bypass UAC entirely on Windows 10.
  • “It turns out nearly 300 executables in your System32 folder are vulnerable to relative path DLL Hijacking. Did you know that with a simple VBScript some of these EXEs can be used to elevate such executions, bypassing UAC entirely?” noted Beukema.
  • The vulnerability referred to here is relative path DLL hijacking, which is when an attacker can cause a legitimate Windows executable to load an arbitrary DLL of the attacker’s choice, most likely with malicious intent.
  • DLL hijacking attacks can prove useful to a skilled attacker as they grant capabilities such as arbitrary code execution, privilege escalation, and persistence on the target system.
  • The various techniques of DLL hijacking covered by the Beukema’s blog post include DLL replacement, DLL Proxying, DLL search order hijacking, Phantom DLL hijacking, DLL redirection, WinSxS DLL replacement, and relative path DLL Hijacking.
  • Beukema suggests a few prevention methods that can be used to deter such attacks, such as looking for activity in the mock windows \ folder, should one be present on your machine.
  • Also, adjusting UAC settings to “always notify” could help prevent attacks like this, should the end-user be savvy enough to understand what is about to be executed.
  • Another strategy is monitoring instances of DLL creation and loading from unexpected file paths:
  • When building applications, developers should enforce using absolute and not relative paths for loading DLLs, among several other techniques.
  • None of these may alone be sufficiently foolproof. However, when appropriately applied in conjunction, preventative measures such as those explained by the researcher can deter DLL hijacking attacks by a long shot.

Hot this week

Business

Kaspersky warns of AI-generated sites distributing remote access software in global campaign

0
Kaspersky reports a global campaign using AI-generated websites to distribute remote access tools and gain control of victims’ devices.
Technology

POCO enters premium smartphone segment with new F8 series

0
POCO launches the F8 Ultra, F8 Pro, and two new tablets as it enters the premium flagship market with new performance and audio features.
Technology

Apple expected to launch low-cost MacBook with iPhone chip in early 2026

0
Apple is expected to launch a low-cost MacBook with an A18 Pro chip in February 2026, aiming to offer a budget-friendly alternative to its existing models.
Technology

Humanoid robot sets new long-distance walking record in China

0
A humanoid robot from AgiBot has broken a walking record in China, completing 106.3 km in three days while raising key technical questions.
Business

Asia’s boards place AI and digital transformation at the top of 2026 priorities

0
Nearly half of Asia’s governance leaders plan to prioritise AI in 2026 as digital transformation reshapes board agendas.

Topics

Technology

Meta and Google reportedly close to landmark AI chip agreement

0
Meta is in talks with Google on a major AI chip deal that could reshape the competitive landscape across cloud and hardware markets.
Technology

IBM expands Storage Scale System 6000 to support full-rack capacity of 47PB

0
IBM expands its Storage Scale System 6000 to a full-rack capacity of 47PB, boosting performance for AI, supercomputing, and large-scale data workloads.
Technology

DJI Osmo Pocket 4 leak suggests launch may be imminent

0
DJI’s Osmo Pocket 4 appears in FCC filings, hinting at an imminent launch amid rumours of new features and a possible US product ban.
Technology

DeepSeek launches open AI model achieving gold-level scores at the Maths Olympiad

0
DeepSeek launches Math-V2, the first open AI model to achieve gold-level scores at the International Mathematical Olympiad.

Related Articles

Popular Categories

TechnologyBusinessGamingReviewsEditor’s ChoiceGeek
Previous article
ASUS ExpertBook B9450: A lightweight and powerful business laptop
Next article
11 inspiring women-run startups you should know about

Tech Edition is a news and media platform for enterprise and technology. Latest insights and blogs on tech, business & gaming in Asia.

Tech Edition delivers distinctive content from every part of the universe, thoughtfully crafted by independent tech enthusiasts and business leaders. It also offers partners a platform to reach out to passionate tech audiences.

Categories

Other Headlines

Meta and Google reportedly close to landmark AI chip agreement

0
Meta is in talks with Google on a major AI chip deal that could reshape the competitive landscape across cloud and hardware markets.

IBM expands Storage Scale System 6000 to support full-rack capacity of 47PB

0
IBM expands its Storage Scale System 6000 to a full-rack capacity of 47PB, boosting performance for AI, supercomputing, and large-scale data workloads.

DJI Osmo Pocket 4 leak suggests launch may be imminent

0
DJI’s Osmo Pocket 4 appears in FCC filings, hinting at an imminent launch amid rumours of new features and a possible US product ban.

DeepSeek launches open AI model achieving gold-level scores at the Maths Olympiad

0
DeepSeek launches Math-V2, the first open AI model to achieve gold-level scores at the International Mathematical Olympiad.

Follow Us

Get important news delivered directly to your feed and stay connected!

Copyright © 2015 - 2025 Tech Edition (Tech Edt). All rights reserved. Made with ♥ by Octa Digital.
Powered by Exabytes. Stock images by Depositphotos. A subsidiary of: VISN Group