News

Hackers found a way around Microsoft Defender to install ransomware on PCs, report says
The good driver that's being exploited here is called "rwdrv.sys,' which is used for tuning software for Intel CPUs. Hackers ...
Cyber Daily15h
Akira ransomware gang observed exploiting CPU driver to disable security software
Hackers have been caught using a bring-your-own-vulnerable-driver (BYOVD) attack to exploit SonicWall firewall devices.
htxt21h
Attackers disable security solutions to install ransomware
GuidePoint Security has discovered attackers exploiting legitimate drivers to gain access to a device. This is accomplished ...
This devious ransomware is able to hijack your system to turn off Microsoft Defender
“The first driver, rwdrv.sys, is a legitimate driver for ThrottleStop. This Windows-based performance tuning and monitoring ...
Hackers can bypass Microsoft Defender to install ransomware on PCs
This is done by exploiting a vulnerable driver called rwdrv.sys, which is a legitimate driver used by an Intel CPU tuning ...
Akira ransomware abuses CPU tuning tool to disable Microsoft Defender
Akira ransomware is abusing a legitimate Intel CPU tuning driver to turn off Microsoft Defender in attacks from security ...
CSO Online2d
Akira affiliates abuse legitimate Windows drivers to evade detection in SonicWall attacks
Threat researchers at GuidePoint Security have uncovered Akira affiliates abusing legitimate Windows drivers in a previously ...
The Hacker News4d
SonicWall Investigating Potential SSL VPN Zero-Day After 20+ Targeted Attacks Reported
Huntress said it detected around 20 different attacks tied to the latest attack wave starting on July 25, 2025, with ...