BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
GHOSTENGINE Exploits Vulnerable Drivers to Disable EDRs in Cryptojacking Attack

GHOSTENGINE Exploits Vulnerable Drivers to Disable EDRs in Cryptojacking Attack

May 22, 2024/in General News

Cybersecurity researchers have discovered a new cryptojacking campaign that employs vulnerable drivers to disable known security solutions (EDRs) and thwart detection in what’s called a Bring Your Own Vulnerable Driver (BYOVD) attack.
Elastic Security Labs is tracking the campaign under the name REF4578 and the primary payload as GHOSTENGINE. Previous research from Chinese

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 2024-05-22 10:09:332024-05-22 10:09:33GHOSTENGINE Exploits Vulnerable Drivers to Disable EDRs in Cryptojacking Attack
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: Exploring the Depths of SolarMarker’s Multi-tiered Infrastructure Link to: Exploring the Depths of SolarMarker’s Multi-tiered Infrastructure Exploring the Depths of SolarMarker’s Multi-tiered Infrastructure Link to: ARPA-H Pledges $50M for Hospital IT Security Auto-Patching Link to: ARPA-H Pledges $50M for Hospital IT Security Auto-Patching ARPA-H Pledges $50M for Hospital IT Security Auto-Patching
Scroll to top Scroll to top Scroll to top