Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks
Microsoft had discovered five Paragon Partition Manager BioNTdrv.sys driver flaws, with one used by ransomware gangs in ...
Infosecurity Magazine3d
BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager
Threat actors are exploiting a zero-day bug in Paragon Partition Manager's BioNTdrv.sys driver during ransomware attacks ...
The Hacker News5h
Medusa Ransomware Hits 40+ Victims in 2025, Demands $100K–$15M Ransom
Medusa ransomware surged 42% in 2024, claiming nearly 400 victims. Spearwing exploits Microsoft flaws to breach networks ...
SecurityWeek3d
Vulnerable Paragon Driver Exploited in Ransomware Attacks
Ransomware operators exploit a vulnerable Paragon driver in BYOVD attacks to elevate privileges to System. Ransomware operators have been observed deploying a vulnerable Paragon Hard Disk Manager ...
Microsoft signed a dodgy driver and now ransomware scum are exploiting it
Paragon Software has released a new driver, BioNTdrv.sys version 2.0.0, which fixes these flaws. Vulnerable versions of the ...
Microsoft-signed driver used in ransomware attacks
Threat actors are exploiting a privilege escalation flaw in Paragon Partition Manager for “bring your own vulnerable driver” ...
Security leak in Paragon Partition Manager driver is being abused
Attackers are abusing a leak in a Paragon Partition Manager driver. Particularly dangerous: they can bring it with them.
Microsoft Adds Paragon Partition Manager Driver To Blocklist As Ransomware Hackers Exploit Windows-Signed Driver For Attacks
Ransomware operators have found a way to exploit a Microsoft Windows-signed driver from Paragon Partition Manager, posing a ...
Yahoo Finance3d
Microsoft-signed driver used in ransomware attacks
Threat actors have already exploited one of the flaws in what are known as “bring your own vulnerable driver” (BYOVD) attacks, in which attackers use signed drivers to compromise systems and ...