Topic: byovd attack

Sort by: Relevance | Date
  • DeadLock Ransomware Evades Security with BYOVD Attack
    December 10, 2025
    90%

    DeadLock Ransomware Evades Security with BYOVD Attack

    The DeadLock ransomware campaign uses a BYOVD technique, exploiting a known vulnerability (CVE-2024-51324) in a Baidu Antivirus driver to disable security software and delete recovery options before deploying its payload. The ransomware itself, written in C++, uses process hollowing and a custom ...

    Read More »
  • 8 Ransomware Groups Now Using This EDR-Bypassing Tool
    August 9, 2025
    75%

    8 Ransomware Groups Now Using This EDR-Bypassing Tool

    A new advanced tool is being used by multiple ransomware groups to bypass endpoint security by exploiting vulnerable drivers and disabling critical defenses before launching attacks. The tool employs heavy obfuscation and BYOVD attacks to target security products from major vendors, allowing rans...

    Read More »

Related Topics

privilege escalation (2) kernel-level access (1) cybersecurity research (1) microsoft defender (1) proactive defense strategies (1) ransom negotiation (1) kaspersky (1) vulnerability exploitation (1)