Ransomware attackers introduce new EDR killer to their arsenal

Ransomware attackers introduce new EDR killer to their arsenal

dhruv2193 Offline

Senior Member

Posts: 443
Threads: 153
Thanks Received: 594 in 353 posts
Thanks Given: 912
Joined: 25 October 17

16 August 24, 14:10 (This post was last modified: 21 August 24, 11:21 by jasonX.)

Quote:Sophos analysts recently encountered a new EDR-killing utility being deployed by a criminal group who were trying to attack an organization with ransomware called RansomHub. While the ransomware attack ultimately was unsuccessful, the postmortem analysis of the attack revealed the existence of a new tool designed to terminate endpoint protection software. We are calling this tool EDRKillShifter.

Full Article_Source

RansomHub's New Malware EDRKillShifter

Additional Info HERE

The following 2 users say Thank You to dhruv2193 for this post:
• harlan4096, jasonX

Find

« Next Oldest | Next Newest »

View a Printable Version

Forum Jump:

Users browsing this thread: 1 Guest(s)

Welcome
You have to register before you can post on our site. Username/Email: Password: Remember me

Recent Posts
XYplorer
What's new in Rele...Kool — 09:05
QOwnNotes
26.2.12 Fixed no...Kool — 09:02
Vivaldi 7.8 Build 3925.74
Vivaldi 7.8 Build ...harlan4096 — 07:41
PatchMyPC 5.4.3.0 (25-February-2026)
Version 5.4.3.0 re...harlan4096 — 07:39
AMD introduces EPYC 8005 “Sorano” data-c...
AMD EPYC 8005 laun...harlan4096 — 07:37

Birthdays
Today's Birthdays
No birthdays today.
Upcoming Birthdays
No upcoming birthdays.

Online Staff

	Decimuss

	Mohammad.Poorya

Login
Username/Email:
Password:	Lost Password?
	Remember me