all InfoSec news
Ransomware Hackers Using AuKill Tool to Disable EDR Software Using BYOVD Attack
April 24, 2023, 1:44 p.m. | info@thehackernews.com (The Hacker News)
The Hacker News thehackernews.com
"The AuKill tool abuses an outdated version of the driver used by version 16.32 of the Microsoft utility, Process Explorer, to disable EDR processes before deploying
attack aukill tool bring your own vulnerable driver byovd defense detection detection and response driver edr endpoint endpoint detection endpoint detection and response evasion explorer hackers microsoft own process processes process explorer ransomware response software threat threat actors tool utility version vulnerable vulnerable driver
More from thehackernews.com / The Hacker News
Jobs in InfoSec / Cybersecurity
Principal - Cyber Risk and Assurance - Infra/Network
@ GSK | Bengaluru Luxor North Tower
Staff Security Engineer
@ Airwallex | AU - Melbourne
Chief Information Security Officer
@ Australian Payments Plus | Sydney, New South Wales, Australia
TW Test Automation Engineer (Access Control & Intrusion Systems)
@ Bosch Group | Taipei, Taiwan
Consultant infrastructure sécurité H/F
@ Hifield | Sèvres, France
SOC Analyst
@ Wix | Tel Aviv, Israel