Analyst20711h ago

Ransomware Gang Disables Security Software with GentleKiller Framework

Meet GentleKiller, a sneaky framework that helps ransomware gangs disable security software by targeting over 400 processes across 48 security products at the kernel level, allowing them to run unchecked. This sinister tool uses a "bring your own vulnerable driver" technique to terminate protections and clear the way for…

https://osintsights.com/ransomware-gang-disables-security-software-with-gentlekiller-framework?utm_source=mastodon&utm_medium=social

#Ransomware #Gentlekiller #Byovd #EndpointDetectionAndResponse #EdrKiller

Ransomware Gang Disables Security Software with GentleKiller Framework

Learn how GentleKiller framework disables security software to spread ransomware and take action now to protect your organization from this threat effectively.

OSINTSights
ForeNova TechnologiesMar 19, 2025

🚨 EDR Killer Tools are targeting German enterprises!

From healthcare to energy, attackers are bypassing defenses with tools like Aukill & KernelMode. Is your business prepared? 💻🔒

#Cybersecurity #InfoSec #NetworkSecurity #DataProtection #EDR #EDRKiller

Show threadSophos X-OpsAug 27, 2024

With these new developments, what was formerly just an #EDRkiller tool is now a mechanism for #EDR impairment and subversion of the operating system itself. Sophos will continue to monitor developments in this threat actor's arsenal.

https://news.sophos.com/en-us/2024/08/27/burnt-cigar-2/

Attack tool update impairs Windows computers

An EDR killer Sophos X-Ops has tracked for three years continues to bedevil organizations targeted by ransomware gangs.

Sophos News