Saturday 13 June 2026 01:30:05 GMT+02:00

Netcrook

HomeManifesto
News
Corporate Security IncidentsCloud, SaaS & Identity SecurityIndustrial Cybersecurity & Critical InfrastructureCyber Intelligence, TrendsAI Security & Agentic SystemsCyber Intelligence & Threat TrendsCyber WarfareCyber Warfare & Nation-State OperationsCyber CriminalityBreaches & Data LeaksCybercrimeMalware & BotnetsRansomware & ExtortionSecurity Awareness & Social EngineeringLegal PolicyLegal, Policy & Government CybersecurityPrivacy, Regulation & ComplianceTechnology, InnovationTechnology, Innovation & Digital InfrastructureVulnerabilities Patch ManagementResearch, Exploits & Offensive SecurityVulnerabilities & Patch Management
Techcrook
Tutte le tecnologieIdentita e accessoFirewall e reteBackup e archiviazioneEnergia e continuitaPrivacy e sicurezza fisicaLaboratorio e prototipazioneStampa e tracciabilitaTecnologia quotidiana
Geocrook
AfricaAsiaEuropeMiddle EastNorth AmericaOceaniaSouth America
WikicrookTeamAppContact
EnglishItalianoArabic

#EDR evasion

Windows QoS Turns Into an EDR Blind Spot

08 June 2026 08:02Research, Exploits & Offensive SecurityNorth America / USADEBUGSAGE

A newly disclosed red-team tool shows how a built-in policy feature can be repurposed to interfere with endpoint security visibility, without touching the usual tampering points.

#EDRChoker | #Windows QoS | #EDR evasion

A Ransomware Brand With Old Habits and New Evasion Tricks

04 June 2026 10:26Ransomware & ExtortionLOGICFALCON

Payouts King is being described as a post-BlackBasta threat that pairs social engineering overlap with code designed to frustrate some endpoint defenses.

#Payouts King | #EDR bypass | #direct syscalls

AI Tools Enter the Post-Exploitation Workshop, and Active Directory Is the Prize

03 June 2026 15:00Research, Exploits & Offensive SecurityNorth America / USADEBUGSAGE

A June 2 intrusion analysis points to AI-assisted tooling being used to speed up Active Directory work and test endpoint defenses, without proving a full breach on its own.

#Active Directory | #AI tools | #EDR evasion

Inside the Windows Hideout: How a Strange Endpoint Alert Led to AI-Labeled AD Recon

03 June 2026 14:14Research, Exploits & Offensive SecurityNorth America / USADEBUGSAGE

A suspicious path under a user profile, a post-exploitation toolkit, and claims of AI-assisted automation point to a quieter but dangerous shift: faster identity mapping and more deliberate EDR pressure.

#Active Directory | #EDR evasion | #AI tools

When a Windows Shortcut Becomes a Scanner Trap

22 May 2026 17:49Malware & BotnetsNorth America / USAIRONQUERY

A junction-based traversal trick shows how ordinary NTFS features can turn recursive endpoint inspection into a reliability problem.

#GhostTree | #NTFS junctions | #EDR evasion

When a ZIP File Becomes the Delivery Room for a Stealer

12 May 2026 17:25Malware & BotnetsSIGNALMONK

A reported Vidar campaign shows how staged loaders, trusted utilities, and heavy obfuscation can narrow EDR visibility long enough for credential theft to happen.

#Vidar Stealer | #EDR evasion | #spear-phishing