Your antivirus is under attack from new "killer" tool - here's what we know

(Image credit: Shutterstock)

EDRKillShifter is getting a dangerous upgrade
The new malware can disable AV and EDR from reputable vendors
Sophos, Bitdefender, and Kaspersky among the tools being targeted

Cybercriminals appear to have improved their antivirus-killing capabilities, as recent research suggest a new tool being shared within the underground community.

In a new report, security researchers from Sophos said multiple ransomware groups are successfully disabling endpoint detection and response (EDR) systems before deploying the encryptor.

Originally, the group known as RansomHub developed a tool called EDRKillShifter, which Sophos says is now made obsolete thanks to this new and improved variant. The new tool can disable security software from multiple high-end vendors such as Sophos, Bitdefender, and Kaspersky.

This devious ransomware is able to hijack your system to turn off antivirus

Hackers can turn off Windows Defender with this sneaky new tool

This top security platform is being hacked to ...
Copyright of this story solely belongs to techradar.com . To see the full text click HERE

Share: