BlackByte Ransomware abuses vulnerable driver to bypass security solutions | allinfosecnews.com

Oct. 8, 2022, 4:23 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

The BlackByte ransomware operators are leveraging a flaw in a legitimate Windows driver to bypass security solutions. Researchers from Sophos warn that BlackByte ransomware operators are using a bring your own vulnerable driver (BYOVD) attack to bypass security products. In BYOVD attacks, threat actors abuse vulnerabilities in legitimate, signed drivers, on which security products rely, […]

The post BlackByte Ransomware abuses vulnerable driver to bypass security solutions appeared first on Security Affairs.

blackbyte blackbyte ransomware breaking news byovd bypass cyber crime cybercrime driver hacking information security news it information security malware pierluigi paganini ransomware security security solutions solutions vulnerable vulnerable driver windows driver

More from securityaffairs.co / Security Affairs

Frontier Communications data breach impacted over 750,000 individuals 6 hours ago | securityaffairs.co

american attack breach breaking news +23

PHP addressed critical RCE flaw potentially impacting millions of servers 16 hours ago | securityaffairs.co

attacker breaking news can code +26

Security Affairs newsletter Round 475 by Pierluigi Paganini – INTERNATIONAL EDITION 21 hours ago | securityaffairs.co

articles box breaking news code +23

New York Times source code compromised via exposed GitHub token 1 day, 9 hours ago | securityaffairs.co

4chan anonymous breaking news code +30

SolarWinds fixed multiple flaws in Serv-U and SolarWinds Platform 2 days, 8 hours ago | securityaffairs.co

address breaking news bug flaws +16

Pandabuy was extorted twice by the same threat actor 2 days, 16 hours ago | securityaffairs.co

actor attack bleepingcomputer breaking news +22

UAC-0020 threat actor used the SPECTR Malware to target Ukraine’s defense forces 2 days, 19 hours ago | securityaffairs.co

actor apt attack attacks +32

Chinese threat actor exploits old ThinkPHP flaws since October 2023 2 days, 22 hours ago | securityaffairs.co

actor akamai applications breaking news +25

A new Linux version of TargetCompany ransomware targets VMware ESXi environments 3 days, 12 hours ago | securityaffairs.co

breaking news custom cyber crime cybercrime +22

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Senior Security Researcher - Linux MacOS EDR (Cortex)

@ Palo Alto Networks | Tel Aviv-Yafo, Israel

View on infosec-jobs.com

Sr. Manager, NetSec GTM Programs

@ Palo Alto Networks | Santa Clara, CA, United States

View on infosec-jobs.com

SOC Analyst I

@ Fortress Security Risk Management | Cleveland, OH, United States

View on infosec-jobs.com