LockBit Ransomware Abuses Windows Defender for Payload Loading
A LockBit ransomware operator or affiliate has been abusing Windows Defender to decrypt and load Cobalt Strike payloads during attacks, according to endpoint security firm SentinelOne.
Read more: LockBit Ransomware Abuses Windows Defender for Payload Loading
Story added 1. August 2022, content source with full text you can find at link above.