Topic: process termination

Sort by: Relevance | Date
  • New 'Obscura' Ransomware Emerges as Stealthy Threat
    September 25, 2025
    85%

    New 'Obscura' Ransomware Emerges as Stealthy Threat

    A new ransomware called "Obscura," discovered in late August 2025, uses domain infrastructure to stealthily spread across corporate networks by placing itself in the NETLOGON share for automatic replication. Upon execution, it disables recovery mechanisms like Volume Shadow Copies, terminates ove...

    Read More »
  • Forensic Tool's Signed Driver Exploited as EDR Killer
    February 5, 2026
    80%

    Forensic Tool's Signed Driver Exploited as EDR Killer

    Hackers exploited a revoked but still functional kernel driver from the EnCase forensic tool to disable endpoint security software, highlighting the threat of Bring Your Own Vulnerable Driver (BYOVD) attacks. The attackers initially breached the network via a SonicWall VPN lacking multi-factor au...

    Read More »
  • Malicious NuGet Packages Deploy Destructive Time Bombs
    November 9, 2025
    79%

    Malicious NuGet Packages Deploy Destructive Time Bombs

    Malicious packages on NuGet, uploaded by shanhai666, contain hidden payloads set to activate between 2027 and 2028, targeting database systems and Siemens industrial devices, with nearly 9,500 downloads before removal. The packages, including Sharp7Extend, mimic legitimate libraries to evade dete...

    Read More »

Related Topics

security research (1) persistence mechanisms (1) code injection (1) incident response (1) ransomware activity (1) package impersonation (1) privilege escalation (1) security monitoring (1)