LockBit operator abuses Windows Defender to load Cobalt Strike

A threat actor associated with the LockBit 3.0 ransomware operation is abusing the Windows Defender command line tool to load Cobalt Strike beacons on compromised systems and evade detection...

Click to expand...