⚠️ AV Killer malware disables most antivirus tools using BYOVD attack via ThrottleStop.sys (TechPowerUp driver)
- Exploits CVE-2025-7771
- Kills AVs: CrowdStrike, BitDefender, Defender, Kaspersky
- Enables ransomware like MedusaLocker
- Active in Russia, Brazil, and Ukraine

🧩 SecureList | Full write-up: ⬇️
https://www.technadu.com/novel-av-killer-malware-exploits-legitimate-driver-throttlestop-sys-targets-all-major-antivirus-solutions/605482/

#BYOVD #CVE20257771 #AVKiller #Malware #MedusaLocker #Infosec #ThreatIntel