Kasseika Ransomware Linked to BlackMatter in BYOVD Attack
January 24, 2024 at 01:05PM A new ransomware group, Kasseika, has adopted an emerging attack technique known as bring-your-own-vulnerable-driver (BYOVD) to deploy ransomware, bypassing security controls. The group exploited a legitimate device driver to terminate antivirus-related processes and execute ransomware. Kasseika’s advanced evasion techniques and code obfuscation make it a potent threat, necessitating robust defense … Read more