Security News > 2024 > January > Kasseika Ransomware Using BYOVD Trick to Disarm Security Pre-Encryption
2024-01-24 11:20
The ransomware group known as Kasseika has become the latest to leverage the Bring Your Own Vulnerable Driver (BYOVD) attack to disarm security-related processes on compromised Windows hosts, joining the likes of other groups like Akira, AvosLocker, BlackByte, and RobbinHood. The tactic allows "threat actors to terminate antivirus processes and services for the deployment of ransomware," Trend
News URL
https://thehackernews.com/2024/01/kasseika-ransomware-using-byovd-trick.html
Related news
- Ransomware scum who hit Indonesian government apologizes, hands over encryption key (source)
- How Searchable Encryption Changes the Data Security Game (source)
- Enzo Biochem ordered to cough up $4.5 million over lousy security that led to ransomware disaster (source)
- Ransomware gang deploys new malware to kill security software (source)
- Security Experts Welcome NIST’s New Encryption Standards For Quantum Computers (source)