BackBox.org News
  • BackBox.org
  • Linux
  • Community
  • News
  • Services
  • Sitemap
  • Contact
  • Click to open the search input field Click to open the search input field Search
  • Menu Menu
Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

April 6, 2026/in General News

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BYOVD) technique to silence security tools running on compromised hosts, according to findings from Cisco Talos and Trend Micro.
Qilin attacks analyzed by Talos have been found to deploy a malicious DLL named “msimg32.dll,”

The Hacker News – ​Read More

Share this entry
  • Share on Facebook
  • Share on X
  • Share on WhatsApp
  • Share on LinkedIn
  • Share on Vk
  • Share on Reddit
  • Share by Mail
https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png 0 0 admin https://www.backbox.org/wp-content/uploads/2018/09/website_backbox_text_black.png admin2026-04-06 11:06:412026-04-06 11:06:41Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools
Search Search
Copyright © BackBox.org
  • Link to X
  • Link to Facebook
  • Link to LinkedIn
  • Link to Youtube
  • Link to Telegram
Link to: North Korean Hackers Target High-Profile Node.js Maintainers Link to: North Korean Hackers Target High-Profile Node.js Maintainers North Korean Hackers Target High-Profile Node.js Maintainers Link to: Convicted spyware maker Bryan Fleming avoids jail at sentencing Link to: Convicted spyware maker Bryan Fleming avoids jail at sentencing Convicted spyware maker Bryan Fleming avoids jail at sentencing
Scroll to top Scroll to top Scroll to top