Despite being initially developed to disable security systems, PoorTry — also known as BurntCigar — has since been updated to allow the removal of security software’s crucial dynamic link libraries and executable files in a RansomHub attack last month.
Article Link: EDR-killing capabilities added to PoorTry Windows driver | SC Media
1 post – 1 participant
Despite being initially developed to disable security systems, PoorTry — also known as BurntCigar — has since been updated to allow the removal of security software’s crucial dynamic link libraries and executable files in a RansomHub attack last month.
Article Link: EDR-killing capabilities added to PoorTry Windows driver | SC Media
1 post – 1 participant
Read full topic