Ransomware attackers introduce new EDR killer to their arsenal

Ransomware attackers introduce new EDR killer to their arsenal

dhruv2193 Offline

Senior Member

Posts: 434
Threads: 153
Thanks Received: 589 in 348 posts
Thanks Given: 910
Joined: 25 October 17

16 August 24, 14:10 (This post was last modified: 21 August 24, 11:21 by jasonX.)

Quote:Sophos analysts recently encountered a new EDR-killing utility being deployed by a criminal group who were trying to attack an organization with ransomware called RansomHub. While the ransomware attack ultimately was unsuccessful, the postmortem analysis of the attack revealed the existence of a new tool designed to terminate endpoint protection software. We are calling this tool EDRKillShifter.

Full Article_Source

RansomHub's New Malware EDRKillShifter

Additional Info HERE

The following 2 users say Thank You to dhruv2193 for this post:
• harlan4096, jasonX

Find

« Next Oldest | Next Newest »

View a Printable Version

Forum Jump:

Users browsing this thread: 1 Guest(s)

Welcome
You have to register before you can post on our site. Username/Email: Password: Remember me

Recent Posts
K-Lite Codec Pack 19.3.5 / 19.3.6 Update
Changes in 19.3.6:...harlan4096 — 11:55
AVG 25.12.10659
AVG 25.12.10659: ...harlan4096 — 11:54
Avast 25.12.10659
Avast 25.12.10659:...harlan4096 — 11:53
Microsoft Edge 143.0.3650.80
Version 143.0.3650...harlan4096 — 11:52
Audacity 3.7.7
Audacity 3.7.7 ...harlan4096 — 11:50

Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
(43)ivyhuv

Online Staff
There are no staff members currently online.

Login
Username/Email:
Password:	Lost Password?
	Remember me