Microsoft’s Windows Defender Advanced Threat Hunting team detected that a cyber espionage group of hackers, known as PLATINUM, has found a way to turn the Windows’s Hotpatching technique (a way of updating the operating system without requiring a restart) to hide its malware from Antivirus products. The Platinum group has been active since 2009 and launching large-scale attacks against governmental organizations, intelligence agencies, defense institutes and telecommunication providers in South and Southeast Asia. The group is still active, but there is still a way for organizations and companies to avoid infection.
Source: https://thehackernews.com/2016/04/windows-hotpatching-malware.html