simontsui, 4 months ago to random Trend Micro: Kasseika ransomware abuses the Martini driver in “bring-your-own-vulnerable-driver” (BYOVD) attacks, to terminate antivirus processes and services for the deployment of ransomware. Trend Micro assesses that an actor in Kasseika acquired or bought access to BlackMatter ransomware’s source code. They provided IOC. 🔗 https://www.trendmicro.com/en_us/research/24/a/kasseika-ransomware-deploys-byovd-attacks-abuses-psexec-and-expl.html #Kasseika #BYOVD #ransomware #BlackMatter #DarkSide #cybercrime #IOC #threatIntel #trendmicro
Trend Micro: Kasseika ransomware abuses the Martini driver in “bring-your-own-vulnerable-driver” (BYOVD) attacks, to terminate antivirus processes and services for the deployment of ransomware. Trend Micro assesses that an actor in Kasseika acquired or bought access to BlackMatter ransomware’s source code. They provided IOC. 🔗 https://www.trendmicro.com/en_us/research/24/a/kasseika-ransomware-deploys-byovd-attacks-abuses-psexec-and-expl.html
#Kasseika #BYOVD #ransomware #BlackMatter #DarkSide #cybercrime #IOC #threatIntel #trendmicro