Kasseika ransomware uses antivirus driver to kill other antiviruses
January 23, 2024 at 03:04PM A ransomware operation called ‘Kasseika’ has emerged, employing Bring Your Own Vulnerable Driver (BYOVD) tactics to disable antivirus software before encrypting files. It abuses a vulnerable driver to disable antivirus products protecting the system. Similarities with BlackMatter indicate possible connections. Victims are given 72 hours to deposit 50 Bitcoins, with … Read more