Read the original article: REvil / Sodinokibi Updates New Safe Mode Functionality
New versions of the Sodinokibi (also commonly known as REvil) ransomware were found last month with functionality for rebooting an infected workstation into Safe Mode. This was widely believed to be for the purpose of having the chance at running without typical anti-virus or endpoint detection (EDR) software running to detect the malicious activity. This […]
The post REvil / Sodinokibi Updates New Safe Mode Functionality