Technology

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

April 6, 2026

The Hacker News

Scroll

Threat actors associated with Qilin and Warlock ransomware operations have been observed using the bring your own vulnerable driver (BYOVD) technique to silence security tools running on compromised hosts, according to findings from Cisco Talos and Trend Micro. Qilin attacks analyzed by Talos have been found to deploy a malicious DLL named msimg32.dll,

Read Full Article

The Hacker News

Coverage and analysis from United States of America. All insights are generated by our AI narrative analysis engine.

United States of America

Bias: Unknown

No recent articles found in this language.

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools

April 6, 2026

The Hacker News

The Hacker News

You might also like

Explore More

Explore

Categories

News From