Analyst20712h ago

Ransomware Gang Disables Security Software with GentleKiller Framework

Meet GentleKiller, a sneaky framework that helps ransomware gangs disable security software by targeting over 400 processes across 48 security products at the kernel level, allowing them to run unchecked. This sinister tool uses a "bring your own vulnerable driver" technique to terminate protections and clear the way for…

https://osintsights.com/ransomware-gang-disables-security-software-with-gentlekiller-framework?utm_source=mastodon&utm_medium=social

#Ransomware #Gentlekiller #Byovd #EndpointDetectionAndResponse #EdrKiller

Ransomware Gang Disables Security Software with GentleKiller Framework

Learn how GentleKiller framework disables security software to spread ransomware and take action now to protect your organization from this threat effectively.

OSINTSights
The Threat Codex3d ago
Killing me gently: Inside Gentlemen’s EDR killer framework
#TheGentlemen #GentleKiller #HexKiller #ThrottleBlood #HavocKiller #OxideHarvest
https://www.welivesecurity.com/en/eset-research/killing-me-gently-inside-gentlemens-edr-killer-framework/
Killing me gently: Inside Gentlemen’s EDR killer framework

ESET Research shares the results of a months-long investigation into the suite of EDR killers maintained by the RaaS gang Gentlemen