Topic: defender disabling

Sort by: Relevance | Date
  • Ransomware Hackers Weaponize Velociraptor DFIR Tool
    October 11, 2025
    80%

    Ransomware Hackers Weaponize Velociraptor DFIR Tool

    Malicious actors are misusing the Velociraptor digital forensics tool to deploy LockBit and Babuk ransomware, with the Chinese threat group Storm-2603 identified as responsible. Attackers exploited a privilege escalation vulnerability in Velociraptor to maintain persistent access, using technique...

    Read More »

Related Topics

data exfiltration (47) indicators of compromise (8) warlock ransomware (3) persistence techniques (2) lockbit ransomware (2) impacket usage (2) babuk ransomware (1) fileless powershell encryptor (1)