Tag: Qilin

Cybersecurity Threat Advisory: Ransomware turning off EDR with vulnerable drivers

Qilin and Warlock (also known as “Water Manaul”) ransomware groups are using bring your own vulnerable driver (BYOVD) techniques to disable endpoint security tools on Windows systems. These actors can shut down more than 300 EDR drivers across multiple security...