- Carbon Black Cloud Sensor: 22.214.171.1242
- Microsoft Windows: All Supported Versions
Large quantity of alerts in console reporting process injection via hollowing, triggered by rule "Report Process Hollowing".
Console alert example:
The application xxx.exe injected code into another process (xxx.dll) via hollowing.
Known issue (DSEN-20840) which has been fixed in 126.96.36.1994
Additional alerts with this same message are also being worked on in (DSEN-22991) which will be fixed in 3.9 MR2 once available
Upgrade to 188.8.131.524 Maintenance Release or greater, once available