Techly NewsGet the app

Get the latest tech news

Hackers can bypass Microsoft Defender to install ransomware on PCs


By exploiting a legitimate driver, hackers can load their own malicious driver to bypass Microsoft Defender.

With kernel-level access, the hacker can then load their own malicious driver—in this case, hlpdrv.sys, which modifies the Windows Registry and causes Microsoft Defender to disable its protective measures. This two-punch approach has been flagged by GuidePoint Security as the deployment method for Akira ransomware attacks, which have been ongoing since July of this year. Mikael has a firm grasp on which gadgets are released, and what is happening with the streaming services and the latest AI tools.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Ransomware

Ransomware

Photo of Hackers

Hackers

Photo of PCs

PCs

Related news:

News photo

Hackers Clown Trump Education Secretary With ‘Curb Your Enthusiasm’ Music and ‘Corrupt Billionaire’ Heckles

News photo

German phone repair and insurance firm goes bankrupt after paying €200,000 to ransomware hackers despite reported revenue of 70 million

News photo

Google says hackers breached one of its databases

« Life-like robots for sale to the public as China opens new store
Intel CEO Says Has Board Support as Trump Calls for Resignation »