The Hacker News reports Qilin and Warlock ransomware disable defenses pre-attack using BYOVD, with Qilin killing 300+ EDR drivers via vulnerable kernel drivers and Warlock using similar drivers after exploiting SharePoint.
Qilin and Warlock #ransomware are disabling defenses before attacks using BYOVD techniques.
kill 300+ EDR drivers
via vulnerable kernel drivers
Warlock exploits SharePoint
This finding is one of many signals tracked across Cyber Security. The live feed updates every few hours with new authority voices, debates, and emerging ideas.
← Back to Cyber Security