Qilin Ransomware’s EDR Killer DLL – How Attackers Are Subverting Defenses

Qilin Ransomware’s EDR Killer DLL – How Attackers Are Subverting Defenses

From Secure AF - A Cybersecurity Podcast by Alias Cybersecurity

May 6, 2026 · 6 min

About this episode

The episode discusses how Qilin ransomware uses a malicious DLL to disable EDR tools before encryption.

Got a question or comment? Message us here! Qilin ransomware is deploying a malicious DLL to disable EDR tools before encryption begins. In this #SOCBrief, we break down how the attack works, what to look for, and how defenders can respond. Support the show Watch full episodes at youtube.com/@aliascybersecurity. Listen on Apple Podcasts, Spotify and anywhere you get your podcasts.

People in this episode

Host: Alias Cybersecurity

Topics covered

  • ransomware
  • cybersecurity
  • EDR tools
  • malware
  • defense strategies

Keywords

  • Qilin ransomware
  • EDR
  • malicious DLL
  • cyber attack
  • defense response

Mentioned in this episode

Organizations: Qilin ransomware

More episodes of Secure AF - A Cybersecurity Podcast

Explore listener stats, chart rankings, contacts and more on the Secure AF - A Cybersecurity Podcast podcast page.