Attackers Are Abusing Trusted Windows Drivers to Kill AV and EDR Tools
VPN Central [Unofficial]
July 1, 2026
Attackers are increasingly using trusted but vulnerable Windows drivers to disable antivirus and endpoint detection and response tools before deploying malware, ransomware, or hands-on-keyboard attacks. The technique is known as Bring Your Own Vulnerable Driver, or BYOVD. A new Security.com report warns that BYOVD has moved from a niche tradecraft technique into a common defense-evasion […]
The post Attackers Are Abusing Trusted Windows Drivers to Kill AV and EDR Tools appeared first on VPN Central.
Discussion in the ATmosphere