Ransomware gangs exploit Paragon Partition Manager bug in BYOVD attacks
Microsoft had discovered five Paragon Partition Manager BioNTdrv.sys driver flaws, with one used by ransomware gangs in ...
Infosecurity-magazine.com2d
BYOVD Attacks Exploit Zero-Day in Paragon Partition Manager
Threat actors are exploiting a zero-day bug in Paragon Partition Manager's BioNTdrv.sys driver during ransomware attacks ...
Microsoft signed a dodgy driver and now ransomware scum are exploiting it
Paragon Software has released a new driver, BioNTdrv.sys version 2.0.0, which fixes these flaws. Vulnerable versions of the ...
Microsoft-signed driver used in ransomware attacks
Threat actors are exploiting a privilege escalation flaw in Paragon Partition Manager for “bring your own vulnerable driver” ...
SecurityWeek2d
Vulnerable Paragon Driver Exploited in Ransomware Attacks
Ransomware operators exploit a vulnerable Paragon driver in BYOVD attacks to elevate privileges to System. Ransomware operators have been observed deploying a vulnerable Paragon Hard Disk Manager ...
Security leak in Paragon Partition Manager driver is being abused
Attackers are abusing a leak in a Paragon Partition Manager driver. Particularly dangerous: they can bring it with them.
Microsoft Adds Paragon Partition Manager Driver To Blocklist As Ransomware Hackers Exploit Windows-Signed Driver For Attacks
Ransomware operators have found a way to exploit a Microsoft Windows-signed driver from Paragon Partition Manager, posing a ...
Yahoo Finance3d
Microsoft-signed driver used in ransomware attacks
Threat actors have already exploited one of the flaws in what are known as “bring your own vulnerable driver” (BYOVD) attacks, in which attackers use signed drivers to compromise systems and ...
Microsoft discovers five potentially damaging attacks against its own software
Microsoft said four of the flaws affected Paragon Partition Manager versions 7.9.1 and older, with the fifth one (CVE-2025-0298) impacting version 17 and older - which was also the one apparently ...