www.bleepingcomputer.com
LockBit ransomware abuses Windows Defender to load Cobalt StrikeSecurity analysts have observed an affiliate of the LockBit 3.0 ransomware operation abusing a Windows Defender command line tool to decrypt and load Cobalt Strike beacons on the target systems.