Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

Updated on September 2, 2025

The threat actor known as Silver Fox has been attributed to abuse of a previously unknown vulnerable driver associated with WatchDog Anti-malware as part of a Bring Your Own Vulnerable Driver (BYOVD) attack aimed at disarming security solutions installed on compromised hosts.
The vulnerable driver in question is “amsdk.sys” (version 1.0.600), a 64-bit, validly signed Windows kernel device driver…

Read the rest of the story at Read More

Source: The Hacker News

July 8, 2025 Uncategorized

Researchers Uncover Batavia Windows Spyw...

August 22, 2025 Uncategorized

INTERPOL Arrests 1,209 Cybercriminals Ac...

August 20, 2025 Uncategorized

Silver Fox Exploits Microsoft-Signed WatchDog Driver to Deploy ValleyRAT Malware

Related posts

Researchers Uncover Batavia Windows Spyw...

INTERPOL Arrests 1,209 Cybercriminals Ac...

FBI Warns FSB-Linked Hackers Exploiting ...

Leave a Comment Cancel reply

Recent News

New Report Links Research Firms BIETA and CIII to China’s MSS Cyber Operations

5 Critical Questions For Adopting an AI Security Solution

⚡ Weekly Recap: Oracle 0-Day, BitLocker Bypass, VMScape, WhatsApp Worm & More

Chinese Cybercrime Group Runs Global SEO Fraud Ring Using Compromised IIS Servers

Zimbra Zero-Day Exploited to Target Brazilian Military via Malicious ICS Files

Oracle Rushes Patch for CVE-2025-61882 After Cl0p Exploited It in Data Theft Attacks

CometJacking: One Click Can Turn Perplexity’s Comet AI Browser Into a Data Thief

Scanning Activity on Palo Alto Networks Portals Jump 500% in One Day

Detour Dog Caught Running DNS-Powered Malware Factory for Strela Stealer

Rhadamanthys Stealer Evolves: Adds Device Fingerprinting, PNG Steganography Payloads