#vulnerable-driver

[ follow ]
#ransomware #byovd #edr-evasion
Information security
fromThe Hacker News
1 day ago

Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

Reynolds ransomware embeds a BYOVD module that deploys a vulnerable NsecSoft NSecKrnl driver to disable EDR and terminate security processes.
[ Load more ]