National Cyber Warfare Foundation (NCWF) Forums


New RansomHub Attack Killing Kaspersky s TDSSKiller To Disable EDR


0 user ratings
2024-09-11 08:34:07
milo
Red Team (CNA)

RansomHub has recently employed a novel attack method utilizing TDSSKiller and LaZagne, where TDSSKiller, traditionally used to disable EDR systems, was deployed to compromise network defenses.  Subsequently, LaZagne was used to harvest credentials from compromised systems, which is unprecedented in RansomHub’s operations and was not documented in CISA’s recent advisory.  The attack sequence began with […]


The post New RansomHub Attack Killing Kaspersky’s TDSSKiller To Disable EDR appeared first on GBHackers Security | #1 Globally Trusted Cyber Security News Platform.



Aman Mishra

Source: gbHackers
Source Link: https://gbhackers.com/ransomhub-disables-edr/


Comments
new comment
Nobody has commented yet. Will you be the first?
 
Forum
Red Team (CNA)



Copyright 2012 through 2024 - National Cyber Warfare Foundation - All rights reserved worldwide.