EDR killer tool uses signed kernel driver from forensic software

Hackers are abusing a legitimate but long-revoked EnCase kernel driver in an EDR killer that can detect 59 security tools in ...
CSO Online

Attackers exploit decade‑old Windows driver flaw to shut down modern EDR defenses

Attackers abused a signed but long-revoked EnCase Windows kernel driver in a BYOVD attack to terminate all security tools.

TTT-Discover optimizes GPU kernels 2x faster than human experts — by training during inference

A new technique from Stanford, Nvidia, and Together AI lets models learn during inference rather than relying on static ...