Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
BlackByte Ransomware Abuses Driver Vulnerability to Disable Security Products
Malware and Vulnerabilities
October 06, 2022
Sophos
Attackers use a sophisticated technique to bypass security products by abusing a known vulnerability in the legitimate vulnerable driver RTCore64.sys. The evasion technique supports disabling a whopping list of over 1,000 drivers.
Read More
BlackByte ransomware
Driver Vulnerability
Security products
Bring Your Own Driver
RTCore64.sys
Publisher
Previous
New Report Shows Significant Improvement in Consumer Cy ...
Trends, Reports, Analysis
Next
Russian Hackers Knock US State Government Websites Offl ...
Breaches and Incidents
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_329691542.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/1657_shutterstock_2055732914.jpeg)
