Alerts
Events
DCR
Explore Cyware Products
Alerts
Events
DCR
Go to listing page
LockBit Ransomware Abuses Windows Defender to Deploy Cobalt Strike Payload
Malware and Vulnerabilities
August 02, 2022
The Hacker News
A threat actor associated with the LockBit 3.0 ransomware-as-a-service (RaaS) operation has been observed abusing the Windows Defender command-line tool to decrypt and load Cobalt Strike payloads.
Read More
LockBit Ransomware
LockBit 3.0
Ransomware-as-a-service (RaaS)
Windows Defender
Cobalt Strike
Publisher
Previous
GitHub Improves npm Account Security as Incidents Rise
Security Products & Services
Next
The US organ transplant network is built on shaky techn ...
Trends, Reports, Analysis
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_205806613.jpg)
/https://cyware-ent.s3.amazonaws.com/image_bank/shutterstock_519010477.jpg)
