Terminator EDR Killer (Spyboy) | Detecting and Preventing a Windows BYOVD Attack
released on 2023-06-21 @ 01:07:37 PM
A Russian-speaking hacker has been making headlines recently after promoting a tool that the threat actor claims can bypass EDR and AV tools. The so-called ‘Terminator’ tool is said to be able to kill processes belonging to “all AVs/EDRs/XDRs”, which if used in conjunction with other malware, could allow threat actors to breach defenses.