The RobbinHood ransomware is using a deprecated Gigabyte driver as the tip of the spear for taking out antivirus products. The driver has a known vulnerability (CVE-2018-19320), and was discontinued in 2018 by the company. The Verisign certificate used to digitally sign the driver has not been revoked, so the signature remains valid. The bring-your-own-bug tactic is likely to crop up in other attacks going forward, according to security analysts.
Source: https://threatpost.com/byo-bug-windows-kernel-outdated-driver/152762/