A LockBit ransomware operator or affiliate has been abusing Windows Defender to decrypt and load Cobalt Strike payloads during attacks, according to endpoint security firm SentinelOne.
This article has been indexed from SecurityWeek RSS Feed
Read the original article: