Ransomware attackers introduce new EDR killer to their arsenal

Ransomware attackers introduce new EDR killer to their arsenal

dhruv2193 Offline

Senior Member

Posts: 443
Threads: 153
Thanks Received: 594 in 353 posts
Thanks Given: 912
Joined: 25 October 17

16 August 24, 14:10 (This post was last modified: 21 August 24, 11:21 by jasonX.)

Quote:Sophos analysts recently encountered a new EDR-killing utility being deployed by a criminal group who were trying to attack an organization with ransomware called RansomHub. While the ransomware attack ultimately was unsuccessful, the postmortem analysis of the attack revealed the existence of a new tool designed to terminate endpoint protection software. We are calling this tool EDRKillShifter.

Full Article_Source

RansomHub's New Malware EDRKillShifter

Additional Info HERE

The following 2 users say Thank You to dhruv2193 for this post:
• harlan4096, jasonX

Find

« Next Oldest | Next Newest »

Messages In This Thread

Ransomware attackers introduce new EDR killer to their arsenal - by dhruv2193 - 16 August 24, 14:10

View a Printable Version

Forum Jump:

Users browsing this thread: 1 Guest(s)

Welcome
You have to register before you can post on our site. Username/Email: Password: Remember me

Recent Posts
AdGuard VPN for Windows 2.9
AdGuard VPN for Wi...harlan4096 — 10:58
Rufus 4.13
Rufus 4.13 Fi...harlan4096 — 10:57
QOwnNotes
26.2.6 Improved ...Kool — 10:30
Internet Download Manager 6.32 Build 9
Internet Download ...Kool — 09:14
K-Lite Codec Pack 19.5.0 / 19.5.1 Update
Changes in 19.5.0:...harlan4096 — 08:41

Birthdays
Today's Birthdays
(38)showercurtains
(49)PeterWhink
Upcoming Birthdays
(46)dimaWeami
(38)Michaelaburi
(46)dpascoal
(44)Baihu

Online Staff
There are no staff members currently online.

Login
Username/Email:
Password:	Lost Password?
	Remember me