Cybersecurity company Sophos has identified a utility tool named EDRKillShifter, which aims to disable endpoint detection and response (EDR) systems, strengthening attackers’ possibilities of carrying out a successful ransomware attack. This discovery forms part of a growing trend, with increasingly sophisticated malware being developed to bypass EDR systems. To safeguard against these threats, Sophos recommends activating tamper protection, implementing stringent Windows security measures and regularly updating systems.
CISA Details New RESURGE Malware Used In Ivanti Attacks
The U.S. Cybersecurity and Information Security Agency (CISA) has detected a new malware variant termed RESURGE, which can modify files and manipulate integrity checks. The
