New Malware Technique Could Exploit Windows UI Framework to Evade EDR Tools

A newly devised technique leverages a Windows accessibility framework called UI Automation (UIA) to perform a wide range of malicious activities without tipping off endpoint detection and response (EDR) solutions.
« To exploit this technique, a user must be convinced to run a program that uses UI Automation, » Akamai security researcher Tomer Peled said in a report shared with The Hacker News. «