How One Letter Hid a Ransomware Army

Qilin ransomware bypassed Windows Defender and Carbon Black EDR using a one-letter filename trick. It spread to 30 endpoints before Halcyon stopped it cold. Zero encryption.

Original source: Halcyon