Lazarus neutralizes antivirus software using BYOVD technique

Threat Advisories

Lazarus neutralizes antivirus software using BYOVD technique

Threat Level
Actor Report

For a detailed threat advisory, download the pdf file here

Summary

The Lazarus group exploits known vulnerabilities within Dream Security’s MagicLine4NX and INITECH INISAFE CrossWEB EX V3 by utilizing Bring Your Own Vulnerable Driver (BYOVD) technique to neutralize an antivirus program.

Sign up to receive our Weekly Threat Digest