Kernel hook bypassing engine (KHOBE) attack technique exploits a vulnerability within a component of the backbone of Windows XP, giving attackers the ability to shut down security software to boost the ability of the malware to remain undetectable. This new hacking technique could potentially bypass dozens of security protections.

The technique involves exploiting kernel driver hooks in Microsoft Windows XP. The attack intercepts and alters communication between components and the underlying antivirus applications, making them utterly useless.

The technique enables this code swap using a kernel hook to directly manipulate kernel data used for execution of software. A kernel hook is a way to get control over the execution of code on a Windows operating system. A kernel hook bypass inserts itself into the code-execution process to change the control over the code execution.

For detailed information click here.

Ref: http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1513306,00.html

Ref: http://searchsecurity.techtarget.com/tip/0,289483,sid14_gci1516600,00.html