Tag: ransomware groups

Cybersecurity Threat Advisory
Cybersecurity Threat Advisory: Ransomware turning off EDR with vulnerable drivers
FeaturedSecurity

Cybersecurity Threat Advisory: Ransomware turning off EDR with vulnerable drivers

Qilin and Warlock (also known as “Water Manaul”) ransomware groups are using bring your own vulnerable driver (BYOVD) techniques to disable endpoint security tools on Windows systems. These actors can shut down more than 300 EDR drivers across multiple security...

/ April 10, 2026