VulnHub

A new ransomware strain called Osiris was identified in a November 2025 attack targeting a significant food service franchise in Southeast Asia. Researchers from Symantec and Carbon Black reported that the attackers used a malicious driver known as POORTRY through a technique called Bring Your Own Vulnerable Driver (BYOVD) to disable security tools. This method allowed the ransomware to operate without detection, posing a serious risk to the affected organization. With ransomware attacks on the rise, this incident highlights the need for companies to strengthen their defenses against evolving tactics. The incident serves as a reminder for businesses to continuously update their security measures and remain vigilant against such threats.

A new strain of ransomware known as Osiris has been identified, targeting a major food service franchisee operator in Southeast Asia in November 2025. The attackers utilized a malicious driver called POORTRY in a technique known as bring your own vulnerable driver (BYOVD), which helps them disable security measures on the victim's systems. This method allows the ransomware to operate without detection, increasing the risk of data theft and operational disruption. The emergence of Osiris is concerning as it reflects a growing trend in ransomware attacks that exploit existing drivers to bypass security protocols. Organizations, especially those in sensitive sectors like food services, need to be vigilant and ensure their security measures can defend against such sophisticated techniques.

Ransomware attacks surged to a record high in 2025, with attackers claiming 4,737 incidents, according to research by Symantec and Carbon Black. Despite significant disruptions to major criminal organizations, ransomware activity did not decline as expected; instead, it adapted and diversified its extortion tactics. This ongoing trend indicates that even when law enforcement intervenes, cybercriminals find ways to continue their operations. The rise in ransomware incidents poses serious risks to businesses and individuals alike, as these attacks can lead to data breaches and financial losses. Companies need to prioritize cybersecurity measures to defend against these evolving threats.