A newly identified threat actor designated Storm-2603 has emerged as a sophisticated adversary in the ransomware landscape, leveraging advanced custom malware to circumvent endpoint security protections through innovative techniques. The group first gained attention during Microsoft’s investigation into the “ToolShell” campaign, which exploited multiple SharePoint Server vulnerabilities including CVE-2025-49704, CVE-2025-49706, CVE-2025-53770, and CVE-2025-53771. Unlike established […]
The post Storm-2603 Using Custom Malware That Leverages BYOVD to Tamper with Endpoint Protections appeared first on Cyber Security News.
This article has been indexed from Cyber Security News
Read the original article: