EDRSilencer - Designed to evade detection by endpoint detection and response (EDR) systems
Manage episode 445344720 series 3606199
A new cybersecurity threat has emerged with the use of the EDRSilencer tool, which is designed to evade detection by endpoint detection and response (EDR) systems. This open-source tool allows attackers to identify and block communication between EDR tools and their management consoles, preventing alerts from reaching security teams. The tool is particularly concerning because it has been observed in attacks attempting to disable various popular EDR products, including Microsoft Defender, SentinelOne, and FortiEDR. Researchers are urging organizations to implement multi-layered security controls, behavioral analysis, and anomaly detection to mitigate the threat posed by EDRSilencer.
127 episodi