A LockBit ransomware operator or affiliate has been abusing Windows Defender to decrypt and load Cobalt Strike payloads during attacks, according to endpoint security firm SentinelOne.
- Posted on
- By SecurityIT
- In Cybercrime, NEWS & INDUSTRY, Virus & Malware, Virus & Threats