Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates

The threat actors behind the Medusa ransomware-as-a-service (RaaS) operation have been observed using a malicious driver dubbed ABYSSWORKER as part of a bring your own vulnerable driver (BYOVD) attack designed to disable anti-malware tools. Elastic Security Labs said it observed a Medusa ransomware attack that delivered the encryptor by means of a loader packed using a packer-as-a-service (PaaS

Mar 25, 2025 - 12:19

0 3

Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates

The threat actors behind the Medusa ransomware-as-a-service (RaaS) operation have been observed using a malicious driver dubbed ABYSSWORKER as part of a bring your own vulnerable driver (BYOVD) attack designed to disable anti-malware tools. Elastic Security Labs said it observed a Medusa ransomware attack that delivered the encryptor by means of a loader packed using a packer-as-a-service (PaaS

UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Sour...

What's Your Reaction?

Dislike

Love

Funny

Angry

Sad

Wow

Debunking the AI Hype: Inside Real Hacker Tactics

Feb 20, 2025 0 5

Microsoft's End of Support for Exchange 2016 and 2019: ...

Feb 20, 2025 0 6

Critical Ingress NGINX Controller Vulnerability Allows ...

Mar 25, 2025 0 1

VanHelsing RaaS Launch: 3 Victims, $5K Entry Fee, Multi...

Mar 25, 2025 0 1

Ongoing Cyber Attacks Exploit Critical Vulnerabilities ...

Mar 25, 2025 0 3

Chinese APT Lotus Panda Targets Governments With New Sa...

Mar 7, 2025 0 5

Comments

Ce site utilise des cookies pour améliorer votre expérience de navigation. En continuant à utiliser ce site, vous consentez à l'utilisation de cookies. Veuillez consulter notre politique de confidentialité pour plus d'informations sur la façon dont nous traitons vos données.

NewJeans announce hiatus after setback in cou...

Disney's Snow White underwhelms at box office

Blue Peter will lose live 'magic', ex-host says

Mary Berry moved to tears by royal birthday m...

Comic Gatto denies abuse but admits 'poor jud...

L3Harris wins $90 million contract with Space...

Lockheed Martin's multi-mission radar joins p...

Marylander sued by Google, accused of fake re...

Tesla issues sweeping recall notice on Cybert...

Ceasefire talks put Ukraine's Zaporizhzhia on...

YouTube Game Cheats Spread Arcane Stealer Mal...

Ongoing Cyber Attacks Exploit Critical Vulner...

Kaspersky Links Head Mare to Twelve, Targetin...

China-Linked APT Aquatic Panda: 10-Month Camp...

10 Critical Network Pentest Findings IT Teams...

Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates

UAT-5918 Targets Taiwan's Critical Infrastructure Using Web Shells and Open-Sour...

10 Critical Network Pentest Findings IT Teams Overlook

What's Your Reaction?

Recommended Posts

Popular Tags

Most Viewed Posts

Middle East latest: Israel receives remains said to inc...

A top Chinese official tours Thai-Myanmar border to hig...

U.S. charges Chinese hackers, government officials in b...

Medusa Ransomware Uses Malicious Driver to Disable Anti-Malware with Stolen Certificates

What's Your Reaction?

Related Posts

Popular Posts

Recommended Posts

Popular Tags