Dark Reading

EDR-Killer Ecosystem Expansion Requires Stronger BYOVD Defenses

Stopping EDR killers, which employ bring-your-own-vulnerable-driver (BYOVD) attack techniques, is difficult, but not ...
The Hacker News

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

Qilin disables 300+ EDR drivers using BYOVD in 2025 attacks, delaying encryption six days, increasing breach impact.
Bleeping Computer

Ransomware gang deploys new malware to kill security software

RansomHub ransomware operators are now deploying new malware to disable Endpoint Detection and Response (EDR) security software in Bring Your Own Vulnerable Driver (BYOVD) attacks. Named ...
TWCN Tech News

How to disable Microsoft Vulnerable Driver Blocklist in Windows 11

Vulnerable drivers can cause harm to your Windows computer. To protect your PC from vulnerable drivers, Microsoft has now introduced the Vulnerable Driver Blocklist in Windows Security. This feature ...
The FPS Review on MSN

Microsoft's April 2026 Windows update ends trust for cross-signed kernel drivers

Microsoft is closing a security gap that has been open for roughly twenty years. Starting with the April 2026 Windows update, the company will remove default trust for kernel drivers signed through ...
ZDNet

Next Windows 10/11 Patch Tuesday fixes Microsoft's botched vulnerable driver blocklist

Microsoft has released a new non-security preview of November's Patch Tuesday update for Windows 10 and Windows 11 22H2. It brings improvements to the taskbar, Microsoft Account, and Task Manager, as ...