Very scary stuff. To be honest, totally forgot about that hackers could load such advanced rootkit malware via exploits. But it's not clear to me, if this can be stopped via process execution monitoring (and whitelisting), I'm guessing you probably need more advanced anti-exploit tools like HMPA and MBAE. Although AV's like Bitdefender and Avast also claim to offer advanced protection against exploits via behavior blocking. https://www.bleepingcomputer.com/ne...rs-exploit-chrome-zero-day-to-deploy-rootkit/
