Cybersecurity researchers at Trend Micro discovered that Kasseika ransomware is being used by threat actors to disable antivirus programs using driver functionality. First introduced in 2023, this type of ransomware was found to reap financial benefits through extortion through encryption. The nefarious actors deploy targeted phishing for initial network breaches, leveraging the Martini.sys driver to disable security defenses. The security industry is advised to implement a multi-layered strategy and update security products frequently to fend off such attacks.
Hey there, friend! Let’s chat a little about my journey and everyday life as a Cyber Threat Analyst out here in the San Francisco Bay