#werfaultsecure

[ follow ]
Information security
fromTechzine Global
1 week ago

Novel attack technique freezes endpoint security via Windows function

EDR-Freeze leverages WerFaultSecure and MiniDumpWriteDump race conditions to suspend EDR processes from user mode, effectively disabling endpoint security without exploiting vulnerabilities.
[ Load more ]