A new BYOI technique lets attackers bypass SentinelOne EDR, disable protection, and deploy Babuk ransomware by exploiting the agent upgrade process. Aon’s Stroz Friedberg discovered a new >>Bring Your Own Installer<< (BYOI) EDR bypass technique that exploits a flaw in SentinelOne's upgrade process to bypass its anti-tamper protections, leaving endpoints unprotected. Stroz Friedberg researchers did [...] First seen on securityaffairs.com Jump to article: securityaffairs.com/177494/hacking/new-bring-your-own-installer-byoi-technique-allows-to-bypass-edr.html
