URL has been copied successfully!
Why a decade-old EnCase driver still works as an EDR killer
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Why a decade-old EnCase driver still works as an EDR killer


Tags: , ,

Attackers are leaning on a new EDR killer malware that can shut down 59 widely used endpoint security products by misusing a kernel driver that once shipped with Guidance …

First seen on helpnetsecurity.com

Jump to article: www.helpnetsecurity.com/2026/02/05/edr-killer-vulnerable-encase-driver/

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. SOAR buyer’s guide: 11 security orchestration, automation, and response products, and how to choose
  2. Invisible C2″Š”, “Šthanks to AI-powered techniques
  3. How Hunters International Used the Browser to Breach Enterprises”Š”, “ŠAnd Why They Didn’t See It”¦
  4. Malicious packages in npm evade dependency detection through invisible URL links: Report