Attackers can downgrade Windows kernel components to bypass security features such as Driver Signature Enforcement and deploy rootkits on fully patched systems.
https://www.bleepingcomputer.com/news/security/new-windows-driver-signature-bypass-allows-kernel-rootkit-installs/
BleepingComputer /
npub1j7…v7hg2
2024-10-26 12:27:12
Author Public Key
npub1j7dz37jrwqhehe8ydzpk5kcjpnzzv53h7s54lj62nv5w9fcar34suv7hg2Published at
2024-10-26 12:27:12Event JSON
{
"id": "55ec466e463d495ee8a71222a95ce2ef80cb92275b6b95bfb0ac9307286a778a",
"pubkey": "979a28fa43702f9be4e468836a5b120cc4265237f4295fcb4a9b28e2a71d1c6b",
"created_at": 1729945632,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/BleepingComputer/statuses/113373716972579479",
"activitypub"
]
],
"content": "Attackers can downgrade Windows kernel components to bypass security features such as Driver Signature Enforcement and deploy rootkits on fully patched systems.\n\nhttps://www.bleepingcomputer.com/news/security/new-windows-driver-signature-bypass-allows-kernel-rootkit-installs/",
"sig": "c21d1964916d61aab3de51a72e82458af3ebc4e21cf75a4cfbbc620d3492207445612f754a152f92af23460fefb02a90a57f6e0aaac77f18a731bf5506d43443"
}