'Gentlemen' Ransomware Abuses Vulnerable Driver to Kill Security Gear
By weaponizing the ThrottleStop.sys driver, attackers are disrupting antivirus and endpoint detection and response (EDR) systems.
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
By weaponizing the ThrottleStop.sys driver, attackers are disrupting antivirus and endpoint detection and response (EDR) systems.
The critical vulnerability involves uninstalling third-party security products and has been used in cyberattacks.
The new Microsoft Defender for Endpoint capabilities include built-in protection and scanning network traffic for malicious activity.
Six out of the eight products achieved an "A" rating or higher for blocking malware attacks. Reports are provided to the community for free.
The tamper protection feature detects attempts to modify files and processes for Microsoft Defender for Endpoints on macOS.
Attempting to catch up with CrowdStrike, Microsoft, and Trend Micro, the Helsinki-based endpoint-protection firm "de-merges" its consumer-security business to focus on businesses.