National Cyber Warfare Foundation (NCWF) Forums


Kasseika Ransomware Using BYOVD Trick to Disarms Security Pre-Encryption


0 user ratings
2024-01-24 12:06:26
milo
Blue Team (CND) , Ransomware

 - archive -- 
The ransomware group known as Kasseika has become the latest to leverage the Bring Your Own Vulnerable Driver (BYOVD) attack to disarm security-related processes on compromised Windows hosts, joining the likes of other groups like Akira, AvosLocker, BlackByte, and RobbinHood.
The tactic allows "threat actors to terminate antivirus processes and services for the deployment of ransomware," Trend



Source: TheHackerNews
Source Link: https://thehackernews.com/2024/01/kasseika-ransomware-using-byovd-trick.html


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Blue Team (CND)
Ransomware



Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.