Reynolds Ransomware Embeds BYOVD Driver to Disable EDR Security Tools

Published: 2 days ago (February 10, 2026 at 09:36 AM EST)

1 min read

Source: The Hacker News

Overview

Cybersecurity researchers have disclosed details of an emergent ransomware family dubbed Reynolds that includes a built‑in “bring your own vulnerable driver” (BYOVD) component for defense evasion. BYOVD is an adversarial technique that abuses legitimate but flawed driver software to escalate privileges and disable Endpoint Detection and Response (EDR) security tools.

Back to Blog

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Threat actors have started to exploit a recently disclosed critical security flaw impacting BeyondTrust Remote Support RS and Privileged Remote Access PRA produ...

Microsoft: New Windows LNK spoofing issues aren't vulnerabilities

markdown !Windows LNK shortcut illustrationhttps://www.bleepstatic.com/content/hl-images/2024/12/16/Windows.jpg Wild West Hackin’ Fest – New Windows LNK Shortcu...

Romania's oil pipeline operator Conpet confirms data stolen in attack

!https://www.bleepstatic.com/content/hl-images/2026/02/05/Conpet.jpg Incident Overview Romania’s national oil pipeline operator, Conpet S.A., confirmed that the...

Palo Alto Chose Not To Tie China To Hacking Campaign For Fear of Retaliation From Beijing

Report Details An anonymous reader shared a report stating that Palo Alto Networks chose not to publicly attribute a global cyber‑espionage campaign to China....

Overview

Related posts

Researchers Observe In-the-Wild Exploitation of BeyondTrust CVSS 9.9 Vulnerability

Microsoft: New Windows LNK spoofing issues aren't vulnerabilities

Romania's oil pipeline operator Conpet confirms data stolen in attack

Palo Alto Chose Not To Tie China To Hacking Campaign For Fear of Retaliation From Beijing