Attackers Weaponizing Trusted Windows Drivers to Kill AV and EDR Processes
Attackers are increasingly abusing trusted Windows drivers to turn off antivirus (AV) and endpoint detection and response (EDR) tools, using a technique known as Bring Your Own Vulnerable Driver (BYOVD). Once considered niche, BYOVD has rapidly become a standard component of modern ransomware...