URL has been copied successfully!
Hackers Repurpose RansomHub’s EDRKillShifter in Medusa, BianLian, and Play Attacks
URL has been copied successfully!

Collecting Cyber-News from over 60 sources

Hackers Repurpose RansomHub’s EDRKillShifter in Medusa, BianLian, and Play Attacks

by

Andy Stern
in

Tags: , , , , , , , ,

A new analysis has uncovered connections between affiliates of RansomHub and other ransomware groups like Medusa, BianLian, and Play.The connection stems from the use of a custom tool that’s designed to disable endpoint detection and response (EDR) software on compromised hosts, according to ESET. The EDR killing tool, dubbed EDRKillShifter, was first documented as used by RansomHub actors in

First seen on thehackernews.com

Jump to article: thehackernews.com/2025/03/hackers-repurpose-ransomhubs.html

Loading

Share via Email
Share on Facebook
Tweet on X (Twitter)
Share on Whatsapp
Share on LinkedIn
Share on Xing
Copy link

also interesting:

  1. Top 12 ways hackers broke into your systems in 2024
  2. The most notorious and damaging ransomware of all time
  3. 9 VPN alternatives for securing remote network access
  4. SOAR buyer’s guide: 11 security orchestration, automation, and response products, and how to choose