Kasseika Ransomware Using BYOVD Trick to Disarms Security Pre-Encryption,
The ransomware group known as Kasseika has become the latest to leverage the Bring Your Own Vulnerable Driver (BYOVD) attack to disarm security-related processes on compromised Windows hosts, joining the likes of other groups like Akira, AvosLocker, BlackByte, and RobbinHood.
The tactic allows « threat actors to terminate antivirus processes and services for the deployment of ransomware, » Trend
The tactic allows « threat actors to terminate antivirus processes and services for the deployment of ransomware, » Trend
,
The ransomware group known as Kasseika has become the latest to leverage the Bring Your Own Vulnerable Driver (BYOVD) attack to disarm security-related processes on compromised Windows hosts, joining the likes of other groups like Akira, AvosLocker, BlackByte, and RobbinHood.
The tactic allows « threat actors to terminate antivirus processes and services for the deployment of ransomware, » Trend
The tactic allows « threat actors to terminate antivirus processes and services for the deployment of ransomware, » Trend
, ,
https://thehackernews.com/2024/01/kasseika-ransomware-using-byovd-trick.html