GhostEngine mining attacks kill EDR security using vulnerable drivers

A malicious crypto mining campaign codenamed 'REF4578,' has been discovered deploying a malicious payload named GhostEngine that uses vulnerable drivers to turn off security products and deploy an XMRig miner. [...] Read More

May 21, 2024

A malicious crypto mining campaign codenamed ‘REF4578,’ has been discovered deploying a malicious payload named GhostEngine that uses vulnerable drivers to turn off security products and deploy an XMRig miner. […] Read More

About The Author

See author's posts

Related Stories

UN seeks to build consensus on ‘safe, secure and trustworthy’ AI

Researchers Expose SVG and PureRAT Phishing Threats Targeting Ukraine and Vietnam

In Other News: LockBit 5.0, Department of War Cybersecurity Framework, OnePlus Vulnerability