The malicious entities associated with the Medusa ransomware-as-a-service (RaaS) scheme have been detected employing a harmful driver known as ABYSSWORKER in a bring your own vulnerable driver (BYOVD) assault aimed at neutralizing anti-malware applications.
Elastic Security Labs reported that it witnessed a Medusa ransomware incident that transmitted the encryptor through a loader compressed using a packer-as-a-service (PaaS).