Skip to main content
RuntimeRebel
← All Articles

Tag

#EDR-Killer

3 articles

Advertisement

Combatting EDR-Killer Tools and BYOVD Attack Techniques
HIGH
Threat Intel

Combatting EDR-Killer Tools and BYOVD Attack Techniques

Defenders face new challenges as the EDR-killer ecosystem expands, utilizing Bring Your Own Vulnerable Driver (BYOVD) to disable security agents.

Runtime Rebel Intel
3 min read·Apr 15, 2026
54 EDR Killers Use BYOVD to Abuse 34 Signed Drivers
HIGH
Malware

54 EDR Killers Use BYOVD to Abuse 34 Signed Drivers

Analysis reveals 54 EDR killer programs abusing 34 signed drivers via BYOVD to neutralize security before ransomware deployment.

Runtime Rebel Intel
3 min read·Mar 19, 2026
BlackSanta Malware Targets HR Workflows to Disable EDR Systems
HIGH
Malware

BlackSanta Malware Targets HR Workflows to Disable EDR Systems

Russian-speaking threat actors deploy BlackSanta malware via hijacked HR workflows to terminate EDR agents and facilitate undetected data exfiltration.

Runtime Rebel Intel
3 min read·Mar 10, 2026