Researchers from Elastic Security Labs have discovered a ransomware campaign that uses a malicious, expired Windows driver from Chinese vendor AbyssWorker. The driver evades security controls by passing certificate checks using system date manipulation, disabling security tools and executing harmful operations on infected systems. This highlights the increasing sophistication of ransomware attacks and the importance of implementing in-depth defense strategies that transcend conventional endpoint protections.
Crooks are reviving the Grandoreiro banking trojan
The Grandoreiro Banking Trojan, active since 2016 and previously limited to Brazil, has expanded its reach to Latin America and Europe. The latest phishing tactics
